EUVD-2025-178274

Malicious code in jest-titan-postcss-loader-galaxy npm...

Malicious code in dorado-hexo-sqlite-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a4a93ae9c0b359cf320351a3af5fd7016688cc60265a5c221a86d43cd0faad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186704 Malicious code in electron-postcss-loader-yaml-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8dd6b06620bf85f280ff8659339047adecb9bcdc503d3a50fafb169483256ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187067 Malicious code in fusion-postcss-loader-supercluster-biohacking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 400dc4a5c17ace9f40ad7f1fd6da92459fd78712491da86cdf24cdb0f3e04ad9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nestjs-postcss-loader-slides-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 136d6caff4f79bd4c2162390fa99edba8f8844e4ae965bc0081adee88785b282 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleoecology-backend-hydrogeology-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20ac770bddada6d8683dab27aa4b1ff2328daf6bf4f00fd6061392212b35abb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in postcss-loader-prosthetics-loopback-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51f9f63b6e2e1816f62d699a65d1f5b8c88dc6d76c09ded78c5dca4dcc42d958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-177843

Malicious code in middleware-exec-callisto-postcss-loader npm...

EUVD-2025-177097

Malicious code in postcss-loader-bootes-dotenv-parse-variables-csv npm...

EUVD-2025-176921

Malicious code in publish-postcss-loader-achernar-hermes npm...

EUVD-2025-177641

Malicious code in nestjs-postcss-loader-slides-spinner npm...

EUVD-2025-177364

Malicious code in paleoecology-backend-hydrogeology-postcss-loader npm...

EUVD-2025-177094

Malicious code in postcss-loader-install-thuban-pipe npm...

EUVD-2025-177093

Malicious code in postcss-loader-oscillation-supervisor-stratigraphy npm...

EUVD-2025-176493

Malicious code in scorpius-vulcan-postcss-loader-centauri npm...

EUVD-2025-177873

Malicious code in metalsmith-postcss-loader-magellan-test npm...

EUVD-2025-178815

Malicious code in fusion-postcss-loader-supercluster-biohacking npm...

EUVD-2025-178041

Malicious code in local-terser-postcss-loader-eventhoriz npm...

EUVD-2025-179356

Malicious code in delphinus-miranda-postcss-loader-chariklo npm...

EUVD-2025-179302

Malicious code in development-postcss-loader-webpack-cosmicweb npm...