Malicious code in alvito-poke40 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfe79ca8f30b17b7954bd1244b97d5c0ebf8018ef56c8799d33ca5557e5aee35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...