EUVD-2025-176493

Malicious code in scorpius-vulcan-postcss-loader-centauri npm...

EUVD-2025-177873

Malicious code in metalsmith-postcss-loader-magellan-test npm...

EUVD-2025-177843

Malicious code in middleware-exec-callisto-postcss-loader npm...

EUVD-2025-178815

Malicious code in fusion-postcss-loader-supercluster-biohacking npm...

EUVD-2025-178274

Malicious code in jest-titan-postcss-loader-galaxy npm...

EUVD-2025-178041

Malicious code in local-terser-postcss-loader-eventhoriz npm...

EUVD-2025-179356

Malicious code in delphinus-miranda-postcss-loader-chariklo npm...

EUVD-2025-179302

Malicious code in development-postcss-loader-webpack-cosmicweb npm...

EUVD-2025-179276

Malicious code in dorado-hexo-sqlite-postcss-loader npm...

EUVD-2025-179178

Malicious code in electron-postcss-loader-yaml-pyxis npm...

EUVD-2025-179031

Malicious code in eslint-postcss-loader-pm2-cressida npm...

EUVD-2025-180182

Malicious code in await-supercluster-prosthetics-postcss-loader npm...

MAL-2025-188784 Malicious code in postcss-loader-regulus-whitedwarf-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19d9e1ff0973c423e2d9f4461d9daf809ea0aa47669997b06f7a4589bfbc9396 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188781 Malicious code in postcss-loader-install-thuban-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778749957419a4be0f2a22c512b8fe2d8c4492150fa5d08d04f64eadb7e70703 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188778 Malicious code in postcss-loader-bootes-dotenv-parse-variables-csv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fc8c8e7ddc227365def94f5bebb667a28e8286055e4184311450fd633fa2131 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188783 Malicious code in postcss-loader-prosthetics-loopback-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51f9f63b6e2e1816f62d699a65d1f5b8c88dc6d76c09ded78c5dca4dcc42d958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189866 Malicious code in terser-postcss-loader-bunyan-celeste (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8535f78567524d8b9c6926e20120a445a55b1ab1f7a69b7db5f380940c2fd10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188780 Malicious code in postcss-loader-hapi-publish-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f30a4b6ed232f3a0f88e9b315c00447a3e16a47c406a885a51e8efb67a3253d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114895

Malicious code in cosmos-postcss-loader-iota-eslint-config npm...

MAL-2025-142912 Malicious code in gemini-postcss-loader-typeorm-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e26d098f2acbda848cd498a85e44bc66024352bd08b5b37b1056b8c449562648 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...