MAL-2025-145892 Malicious code in ora-postcss-dotenv-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc43970ee075cd25716951c0bb897ae904e4c67a131073593eb712d5dc1c224 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146405 Malicious code in postcss-loader-pegasus-registry-chai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da724633e0b2627cc47e764d76ffc267a948d6191d9f6aa6ee8f491a9fc1e9ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146422 Malicious code in postcss-slides-browserify-less-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ed32228acec370c873c86c008e03a58d16a799b4df31c1b515a25cd13ab56bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147026 Malicious code in radiant-tool-postcss-loader-algol (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4499499c8548c0ac5d008278a2990487d0bf10c924b79a538991ba90a0eee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146407 Malicious code in postcss-loader-sagitta-dynamo-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c1bd822a752ca9487e572499a5598de7969ee9e78acd72d6c1fdc286859d9f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123543

Malicious code in postcss-airbnb-query-start npm...

EUVD-2025-123523

Malicious code in postcss-loader-luna-eslint-despina npm...

EUVD-2025-116517

Malicious code in ariel-docusaurus-build-postcss npm...

EUVD-2025-123515

Malicious code in postcss-loader-quito-iota-commitizen npm...

Malicious code in yildun-postcss-meteor-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 781037424e40c3e85d31cc340b0d5d327af94d57cb6d47c6c7ca450d5d9c3215 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111466

Malicious code in magellan-middleware-protractor-postcss-loader npm...

EUVD-2025-113200

Malicious code in gemini-postcss-loader-typeorm-procyon npm...

EUVD-2025-116923

Malicious code in acamar-nightmare-ophiuchus-postcss npm...

Malicious code in postcss-loader-luna-eslint-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e339b954ad1c5820bcd5e07e8b57037f08a5208d8bb38e2159a7c89fd9ba3735 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123503

Malicious code in postcss-postcss-package-impulse npm...

EUVD-2025-124015

Malicious code in orbit-europa-dorado-postcss-loader npm...

EUVD-2025-122563

Malicious code in rest-nightmare-postcss-loader-ophiuchus npm...

Malicious code in sagitta-postcss-uninstall-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 965478c6b9162d383cd0ae40f14f30f3ff3dca22509b4bec5ce74b6e12f15ad6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in postcss-atlas-graphql-spectron-webdriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2e1e09c839e7a8dd1bf2271918dfd6f0dffef915db2fca18e17edd957e22026 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114055

Malicious code in enif-postcss-nestjs-auth npm...