Malicious code in kapvino-soi-fava (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fa919cb5fa336140b6f69ebd4ed349a9b5b7ca644dece5db4edb9ebc6fbd4e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...