303 matches found
Malicious Package
Overview tailwind-font-inter is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-2111 Malicious code in tailwind-font-inter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2cb39a969b06dada95f847c6d5fc21fd0cb38a37c6b38a6b60ef1ca439f2147 The package tailwind-font-inter was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1418 Malicious code in tailwind-mainanimation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64236873269f6da90599a0e0136ce22979e4bbfd8103cf4850e42c1179ae6cb5 The package tailwind-mainanimation was found to contain malicious code. Source: ghsa-malware...
Malicious code in tailwind-mainanimation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64236873269f6da90599a0e0136ce22979e4bbfd8103cf4850e42c1179ae6cb5 The package tailwind-mainanimation was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview tailwind-mainanimation is a malicious package. Upon installation, it silently injects obfuscated JavaScript into the end of legitimate project configuration files like tailwind.config.js. To evade detection, the malware rewrites git history, forging timestamps so the malicious commit...
Malicious Package
Overview tailwindcss-forms-animation is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
@farmfe/js-plugin-tailwindcss (>=0.0.2 <=0.0.20), @nohejs/core (>=1.0.0 <=1.1.106) +3 more potentially affected by CVE-2025-56647 via @farmfe/core (>=1.6.6 <=1.7.11)
@farmfe/core NPM version =1.6.6, =0.0.2, =1.0.0, =0.0.2, =2.7.0, =1.0.5, =1.3.4 Source cves: CVE-2025-56647 Source advisory: SNYK:JS-FARMFECORE-15282805...
Malicious code in tailwind-components-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3916984542c5471332406155adc38fde3d254e8748b6e65caa1b9680663602c The package tailwind-components-cli was found to contain malicious code. Source: ghsa-malware...
MAL-2026-543 Malicious code in tailwind-components-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3916984542c5471332406155adc38fde3d254e8748b6e65caa1b9680663602c The package tailwind-components-cli was found to contain malicious code. Source: ghsa-malware...
EUVD-2026-3275
Malicious code in tailwin npm...
Malicious Package
Overview tailwind-merge-v2 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious Package
Overview tailwind-merge-v3 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in tailwind-merge-v3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d7eb6509e7116f0d29cc221829baf733446faecce580b8d9334b6a43586ad58 The package tailwind-merge-v3 was found to contain malicious code. Source: ghsa-malware...
EUVD-2026-3050
Malicious code in tailwind-merge-v3 npm...
Malicious code in tailwind-merge-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfe4dad53bfa4f2ffe409644975e17958c4a1ab064109707aa6d944c1030b959 The package tailwind-merge-v2 was found to contain malicious code. Source: ghsa-malware...
EUVD-2026-3051
Malicious code in tailwind-merge-v2 npm...
MAL-2026-316 Malicious code in tailwind-merge-v3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d7eb6509e7116f0d29cc221829baf733446faecce580b8d9334b6a43586ad58 The package tailwind-merge-v3 was found to contain malicious code. Source: ghsa-malware...
MAL-2026-315 Malicious code in tailwind-merge-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfe4dad53bfa4f2ffe409644975e17958c4a1ab064109707aa6d944c1030b959 The package tailwind-merge-v2 was found to contain malicious code. Source: ghsa-malware...
Malicious code in tailwind-autoanimation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 239c7b556685c76e1b25bf8ec701e0688ec975920ddc409d56365b6c38b30edc The package tailwind-autoanimation was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview tailwind-autoanimation is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...