231 matches found
EUVD-2025-178426
Malicious code in indus-coronalmassejection-sass-loader-virgo npm...
EUVD-2025-179790
Malicious code in chakra-ui-standard-nuxtjs-sass-loader npm...
EUVD-2025-179129
Malicious code in enif-terser-webpack-plugin-sass-loader-spectron-webdriver npm...
EUVD-2025-177831
Malicious code in mini-css-extract-plugin-sass-loader-rigel-koa npm...
EUVD-2025-176521
Malicious code in sass-loader-fornax-passport-geoarchaeology npm...
EUVD-2025-178268
Malicious code in jovian-sass-loader-native-cassini npm...
EUVD-2025-176613
Malicious code in rocket-package-sass-loader-avior npm...
EUVD-2025-178853
Malicious code in fornax-chariklo-sass-loader-parsec npm...
EUVD-2025-176523
Malicious code in sass-loader-castor-prettier-stylelint-lint npm...
EUVD-2025-178771
Malicious code in ganymede-sass-loader-dagda-husky npm...
EUVD-2025-178244
Malicious code in juno-saturnology-sass-loader-joviology npm...
EUVD-2025-176519
Malicious code in sass-loader-lepton-nebula-virgo npm...
MAL-2025-188755 Malicious code in plutology-sass-loader-mongoose-extremophile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5143ce37789b72ee505bcbf926f1c3450ee28736cce04aeca84e1eb9010bbbe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176518
Malicious code in sass-loader-prompts-inquirer-blaze npm...
EUVD-2025-176522
Malicious code in sass-loader-cluster-link-jekyll npm...
EUVD-2025-175436
Malicious code in yonder-sass-loader-firebase-cosmicsilence npm...
EUVD-2025-177553
Malicious code in nodejs-sass-loader-carina-duplex npm...
EUVD-2025-176524
Malicious code in sass-loader-canopus-mesosphere-concurrently npm...
EUVD-2025-178348
Malicious code in iota-betelgeuse-rest-sass-loader npm...
EUVD-2025-175730
Malicious code in version-sass-loader-webpack-quantum-computing npm...