207 matches found
Malicious code in hugo-mira-node-sass-nashira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e53c2ce75884a9a6585371f9a0621f88401c19a99cbc6608575c06f39381bca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-config-sadr-node-sass-loglevel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7a9531f78b9c6d8ced2fbe159fa6b011866cef7d09a1509b8ae0f2ffbf42f0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-callisto-html-webpack-plugin-vulcan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 632da6973cf002bbdbdf9c84729d4558c7c645b572173e0b95bc2bcd2d28238c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-cli-charon-zenith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f32e51d72c3d0f1f895665fca468290ffd1c71c1ffefce6a9d6d60b92d1e49c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-concurrently-markdown-ultra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cecbf1725b1fe3550e4535c888b84b76843307d046713ddb77493b16889d15e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-eslint-plugin-solis-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5aed2df30501f45d7be301a0e5be1666e00b4b3342c466d56d145e396b7a877d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-loglevel-stop-winston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a7535b8bc3308fea5d62aa18a1d257a3e693dea8b423fcfeac5e9ae315d78a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-pegasus-wezen-pegasus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b52e3a172551ddf3db63f6fea9966b87a818d20b2aca4af126ee46b0a6a920a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-polaris-eridanus-dorado (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e415838ebe67bde60565e881599dab4430e8c79f86c3048a0062a4c377bc419a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-process-wolf-init (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5009110c757b0598a61838ec0b3547d6aecab8a31eefd10856eb59291fa0ccda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-tool-resolvers-winston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe9d82b37f041e55c54c357d2b3f2c7cac2a2ca7af9a206f536e6ad03b700b7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prettier-rehype-aquarius-node-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d2d565d78ce155f0056b21379cd9365f51675c882544c533da05a653b027449 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112329
Malicious code in jabbah-node-sass-neptune-sirius npm...
Malicious code in node-sass-sequelize-init-grunt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9820827f29fae3624ef8497c12accae1a6246f1b4a7a18bbfcaead007b9200b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in octans-axios-node-sass-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7692cbc2f8639f5c959ed7f4b387d90952e4f3c2f0d55aed20eef5917ab13d2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-124724
Malicious code in mui-apollo-transport-node-sass npm...
EUVD-2025-124377
Malicious code in node-sass-iota-hapi-bulma npm...
EUVD-2025-113512
Malicious code in fork-start-node-sass-neptune npm...
EUVD-2025-116826
Malicious code in aldebaran-fetch-node-sass-koa npm...
MAL-2025-145547 Malicious code in node-sass-magellan-mongodb-auth0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5219e3fb0d56abde1dc3b799139abbef4f1eb1b65d940883d6bf200f233d4364 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...