739 matches found
Malicious code in postcss-loader-telesto-vulcan-phenomic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2d032771765afdffab124f10a56de31b135824b7fdd9e795e2ba150faca6d14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115223
Malicious code in comet-parcel-perseus-postcss-loader npm...
Malicious code in postcss-loader-child-process-element-ui-weywot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58dc10cb21328b6fa7193c5174c025aab42f49ae52a684435b85bfcfe965e9bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120224
Malicious code in xerxes-gridsome-postcss-loader-google npm...
EUVD-2025-123860
Malicious code in pegasus-upgrade-gravity-postcss npm...
EUVD-2025-111517
Malicious code in lynx-parcel-telesto-postcss npm...
Malicious code in postcss-await-janus-triton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24f95e8dca9374bd68093ca7b66d2bc1f9fe8b85ed4d42fe457323a52534de0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114054
Malicious code in enif-postcss-winston-weywot npm...
EUVD-2025-122167
Malicious code in sedna-carpo-command-postcss-loader npm...
Malicious code in cors-schema-nightwatch-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a3068afe7dca873227fe3f04e64f38db980de42d0e7cc3bfc9bd80c41ccff06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-sagitta-dynamo-altair (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c1bd822a752ca9487e572499a5598de7969ee9e78acd72d6c1fdc286859d9f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-xanadu-test-mira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 829bbcc100b6a0075043e2dbd7df90af59ab633374fca956c513e20a11fd2a34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-style-loader-foundation-ariel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a7af3a5be712e0cae8587eeca54d8551aab41011790b2cadb628fd9c4e66952 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-122876
Malicious code in rate-limiter-postcss-vega-chromedriver npm...
EUVD-2025-114805
Malicious code in css-loader-gridsome-postcss-loader-yaml npm...
EUVD-2025-123156
Malicious code in public-postcss-loader-nconf-fusion npm...
EUVD-2025-120207
Malicious code in xerxes-weywot-eris-postcss npm...
MAL-2025-144742 Malicious code in materialize-farout-postcss-loader-umbra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d665c28088eedfe73f9c8e9e233c2e38a00010cebadd41eb580f6925b4a130c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146105 Malicious code in perseus-postcss-loader-thuban-cosmiconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f8b923d176dbf13f318330091afc5a22441ff682eae8e7d2c7fc2859adbf1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145405 Malicious code in nestjs-terser-postcss-loader-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cea7dc9bb5fec3e638d15d76e199ee6a1c671cd51e20914ae74fbfcf10853450 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...