737 matches found
Malicious code in reveal-md-postcss-loader-enceladus-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3b7e1975ba8584db82d63f8d4ed5cfc113066d24a35aac8206fb73a8d4b315c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123528
Malicious code in postcss-loader-elara-izar-pino-pretty npm...
EUVD-2025-116525
Malicious code in arcturus-toml-carpo-postcss-loader npm...
Malicious code in materialize-farout-postcss-loader-umbra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d665c28088eedfe73f9c8e9e233c2e38a00010cebadd41eb580f6925b4a130c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sedna-postcss-gravity-lacerta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4518a1db3516a32330ad1a98f283c25f4d297b1556347a4e89b67adacb66de53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-124782
Malicious code in mongodb-postcss-loader-async-scorpius npm...
Malicious code in blitz-nodejs-postcss-umbra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45892fb45c9f93ca8fd5b90a65388042f2205a48413aa509a34733d2c1d972cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120667
Malicious code in warp-build-postcss-loader-semantic-release npm...
EUVD-2025-120325
Malicious code in xanadu-postcss-slides-reveal-md npm...
EUVD-2025-112181
Malicious code in jest-rigel-postcss-loader-sqlite npm...
MAL-2025-148012 Malicious code in slidev-postcss-loader-non-blocking-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 908ac57851e5eb2a493ddb3438f9e04e69b5b2d95cb824b69490b1cbee3ddba3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146397 Malicious code in postcss-loader-halley-middleware-xanadu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3076fe57c760cf3d4422180906de48b72abea4f1b53c7e7e850d04ae24e820db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146409 Malicious code in postcss-loader-semantic-release-slides-buffer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 717f95fa76f8eeced6870b8c5dfccbaf84f939725805d64b82d2113facf15754 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139577 Malicious code in arcturus-toml-carpo-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8147de9a6ba9892bbef8fb92f6494108d9eeabd8b916bf2676a4467a322ec14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146418 Malicious code in postcss-postcss-package-impulse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 808dfa2a9e301a31de471bb99a322bb7a4f31937ab1e579f9a02a33d25e30287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142911 Malicious code in gemini-postcss-loader-quantum-resolvers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 025ab4f53ac3540ff0cd2eb7fbe2d4c11d635f63020d4195a445991a4c7d4566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144750 Malicious code in materialize-postcss-triton-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e806cad24fc90b3611ebe78f4acf26d974be1fca9b6f1a37555a0267101d4ea9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147756 Malicious code in sedna-carpo-command-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38a24b4b00f49c87b40537793e078710621ed57e859a9a24b4c06e73f4a01690 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146390 Malicious code in postcss-loader-commitizen-foundation-xenos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3544c8a28f043aa9e67e4ced4509db2908ad6675975cdeb4198f6d034572831a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141770 Malicious code in dotenv-safe-postcss-loader-taurus-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 311fa8407e3f0b9e342b94b70bbf8b4f70cfd62a93df0c308b3f4b6bc8829b91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...