2 matches found
EUVD-2025-123504
Malicious code in postcss-neptune-ursa-nextjs npm...
MAL-2025-146417 Malicious code in postcss-neptune-ursa-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cb77aec177aa08941fff2e38a90f659895d77f4a2d68453f8a9c1bf244d1376 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...