229 matches found
EUVD-2025-124700
Malicious code in mutation-chromedriver-postcss-loader-proxima npm...
MAL-2025-147633 Malicious code in sagitta-zephyr-andromeda-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61a5b1bfa53ba310f253f18851fdadd7844eb8de63467a2bfbabce2ddef447a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146413 Malicious code in postcss-loader-webdriver-manager-chalk-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9a4091768432e806b132a6147bd0d7b9388cffec761aaf5c90f18b1fb1576a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141483 Malicious code in dagda-repository-postcss-loader-wolf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b212ae5f985d7c18d311a6ab321a2d2732144636d494c2f7fc71552707ecbcc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146404 Malicious code in postcss-loader-oauth-chai-miranda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c48c54ba2e46e0cf1db9575bf6d04ad71d5e2ff725f1353c8b6b9d03cdf82fcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143999 Malicious code in jsonp-jwt-avior-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d24d5177d5a69fe4e89ff96082eb699b3dc32aef498477c15da8c7939e6d4938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146410 Malicious code in postcss-loader-slidev-gulp-bellatrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5862d33be04bc9356770af83130173cb0e8ea065555eca3cac16d8de2bd2a5f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148498 Malicious code in telesto-pulsar-postcss-loader-indus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29a275cd2a794542f709a54139244958b2081f35f7c8c56c88d694ce794d791e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147530 Malicious code in rollup-postcss-loader-xanadu-relay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f558dd12ed39569dd372e118be9afd8a3636ac8fdaff883749c0113325e68b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146397 Malicious code in postcss-loader-halley-middleware-xanadu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3076fe57c760cf3d4422180906de48b72abea4f1b53c7e7e850d04ae24e820db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121430
Malicious code in telesto-pulsar-postcss-loader-indus npm...
MAL-2025-146406 Malicious code in postcss-loader-quito-iota-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9ff2bf6dc026adfb7fcf087d65584c298b75dd1842c5baff878381350cd0ad5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146105 Malicious code in perseus-postcss-loader-thuban-cosmiconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f8b923d176dbf13f318330091afc5a22441ff682eae8e7d2c7fc2859adbf1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145136 Malicious code in mongodb-postcss-loader-async-scorpius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9142e08ed13db0529b9ced6d0dc369bd6d77a6c48aa9ab1c6409a1b485c8b2d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147756 Malicious code in sedna-carpo-command-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38a24b4b00f49c87b40537793e078710621ed57e859a9a24b4c06e73f4a01690 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146414 Malicious code in postcss-loader-winston-transport-spinner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85ee82fc5bbb44b457adbfa013a4a759e5e0903d4a9c8be123b2c3e8ea262532 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115302
Malicious code in cli-npm-postcss-loader-juno npm...
MAL-2025-149262 Malicious code in warp-build-postcss-loader-semantic-release (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dad8ad4499914a024c628b190c40ae7f1c43abb2220d0b3cc416b5b887452f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140359 Malicious code in canopus-hermes-postcss-loader-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64932e18462641061057f9a0061b3b7e8ed093628d7603b096014c31006ad72f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142911 Malicious code in gemini-postcss-loader-quantum-resolvers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 025ab4f53ac3540ff0cd2eb7fbe2d4c11d635f63020d4195a445991a4c7d4566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...