Loading npm security reports…
Parse CSS and add vendor prefixes to CSS rules using values from the Can I Use website
Importing the main module starts hidden network requests without user action. The responses supply encrypted command material that is decrypted and executed through the system shell.
Package source references dynamic require/import behavior.
lib/transition.jsView on unpkg · L1Source decodes a Base64-obscured HTTP endpoint at runtime.
lib/autoprefixer.jsView on unpkg · L14Source fingerprint signature matches a known malicious package signature; route for source-aware review.
lib/autoprefixer.jsView on unpkgPackage source references dynamic require/import behavior.
lib/transition.jsView on unpkg · L1Source decodes a Base64-obscured HTTP endpoint at runtime.
lib/autoprefixer.jsView on unpkg · L14Source fingerprint signature matches a known malicious package signature; route for source-aware review.
lib/autoprefixer.jsView on unpkg