Malicious code in convict-jsonp-query-castor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e948925b47961d78429f6f8ac1d7b338bfdcf54557a2179edf315cc354e1fc4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...