739 matches found
Malicious code in ariel-ganymede-octans-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fec6e1b31aae085b602d14429f3b3df2a9d0004263e668bbc299a4e698d2144 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pipe-query-puppeteer-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 217327ddb3a81eb68c11448bac7cc579de2bd37f7d5a20bcf44b6411817105e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-procyon-xanadu-run-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d88030c79380d58aef26fdf412d1babc87d4120c4d6920877f4d389f9dc50bd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123521
Malicious code in postcss-loader-mini-css-extract-plugin-development-heka npm...
EUVD-2025-112484
Malicious code in init-postcss-markdown-pdf-sequelize npm...
MAL-2025-147530 Malicious code in rollup-postcss-loader-xanadu-relay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f558dd12ed39569dd372e118be9afd8a3636ac8fdaff883749c0113325e68b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146407 Malicious code in postcss-loader-sagitta-dynamo-altair (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c1bd822a752ca9487e572499a5598de7969ee9e78acd72d6c1fdc286859d9f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145892 Malicious code in ora-postcss-dotenv-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc43970ee075cd25716951c0bb897ae904e4c67a131073593eb712d5dc1c224 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146391 Malicious code in postcss-loader-css-minimizer-webpack-plugin-achernar-barnard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfd5bb703b8e57411fa94222b918c4cd6f4d263eb9ae29e98c2aa60912ac969b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113200
Malicious code in gemini-postcss-loader-typeorm-procyon npm...
Malicious code in sagitta-postcss-uninstall-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 965478c6b9162d383cd0ae40f14f30f3ff3dca22509b4bec5ce74b6e12f15ad6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146423 Malicious code in postcss-start-hapi-hexo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcf0d50e2bd565e4ec443a3833a88464d43936318833ccf7ee79429465a63bc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-luna-eslint-despina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e339b954ad1c5820bcd5e07e8b57037f08a5208d8bb38e2159a7c89fd9ba3735 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yildun-postcss-meteor-unuk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 781037424e40c3e85d31cc340b0d5d327af94d57cb6d47c6c7ca450d5d9c3215 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-124015
Malicious code in orbit-europa-dorado-postcss-loader npm...
MAL-2025-146422 Malicious code in postcss-slides-browserify-less-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ed32228acec370c873c86c008e03a58d16a799b4df31c1b515a25cd13ab56bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143629 Malicious code in init-postcss-markdown-pdf-sequelize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abb21342977b56cd234645325128ec729005574ce297f5bbaf05e55b64a5fd91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141812 Malicious code in duplex-jekyll-janus-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e5d9eef64606b70b321ce6c4a064af57dcc5d305c662934213156fc9a822c73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146419 Malicious code in postcss-procyon-xanadu-run-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d88030c79380d58aef26fdf412d1babc87d4120c4d6920877f4d389f9dc50bd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147026 Malicious code in radiant-tool-postcss-loader-algol (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4499499c8548c0ac5d008278a2990487d0bf10c924b79a538991ba90a0eee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...