MAL-2025-141604 Malicious code in despina-pegasus-mini-css-extract-plugin-sagitta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2cd25cf15f924783c9c0dd4ff35111ce8a5bb6b596dd67ab342567c9a9f3de6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...