MAL-2025-142927 Malicious code in global-csrf-xml-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a669302077b44dbbcb3bdfd3d6456495a67dbcffacbdef50b03e2fbf92f2b41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...