738 matches found
EUVD-2025-123526
Malicious code in postcss-loader-fork-levels-venus npm...
EUVD-2025-116514
Malicious code in ariel-ganymede-octans-postcss-loader npm...
EUVD-2025-122763
Malicious code in regulus-transport-postcss-carina npm...
MAL-2025-145310 Malicious code in nconf-deimos-postcss-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 865cce33f39643e61e6f6e8ef24989339dfae8ee7032912dd33dfc700f985496 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146425 Malicious code in postcss-xanadu-test-mira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 829bbcc100b6a0075043e2dbd7df90af59ab633374fca956c513e20a11fd2a34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146386 Malicious code in postcss-deimos-express-fusion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01a01bdc174dfd05d600759d6d9aab8707546cd8172951c7e942208348b2d8dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139755 Malicious code in auth0-request-postcss-corvus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34fca1fc606cf6304fd682277d3fe822752201f5db947bc62472a4202d2ddc2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139588 Malicious code in ariel-ganymede-octans-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fec6e1b31aae085b602d14429f3b3df2a9d0004263e668bbc299a4e698d2144 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147359 Malicious code in rest-nightmare-postcss-loader-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a32ad78d5c1b5a3137b663ae91f27e0355dcea0816dbe228c0eebaa243099d81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149606 Malicious code in xanadu-postcss-slides-reveal-md (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89a41a30b3763024f334b151b2995172907baf7eb8f012bf82cddcb6d471fa0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146412 Malicious code in postcss-loader-telesto-vulcan-phenomic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2d032771765afdffab124f10a56de31b135824b7fdd9e795e2ba150faca6d14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145466 Malicious code in nightwatch-figures-postcss-gacrux (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5684f253471f3ad92faf82be19ae9e11bcc466730f601e3572e2e65b93347e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148498 Malicious code in telesto-pulsar-postcss-loader-indus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29a275cd2a794542f709a54139244958b2081f35f7c8c56c88d694ce794d791e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142055 Malicious code in enif-postcss-nestjs-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ec138f7c2f3b7576ed66df5c83a3a39db74781bf2a78466f5371bf22fedfc71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143108 Malicious code in grus-vulcan-postcss-terser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36086da343f1f0070583626b0a77247b177ec3186f1550f7756ef30c223b78a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149072 Malicious code in ursa-rocket-postcss-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37cae97ac55a7b319cca4e3372d42af7f11f5411dab6a8c8a51d5898dec63432 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143224 Malicious code in helios-achernar-postcss-loader-cypress (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72aa3bf1e9bab5bd6a52eb05ce85e1cd2626bc73ef8ab794ae82316c4d761497 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111152
Malicious code in middleware-postcss-loader-vulcan-configstore npm...
Malicious code in postcss-loader-commitizen-foundation-xenos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3544c8a28f043aa9e67e4ced4509db2908ad6675975cdeb4198f6d034572831a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gemini-postcss-loader-quantum-resolvers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 025ab4f53ac3540ff0cd2eb7fbe2d4c11d635f63020d4195a445991a4c7d4566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...