MAL-2025-155646 Malicious code in hafiz-poke4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74f51d586e6250ef6a76e034dcfe139545110f5f2436e0d3d674d8bd4b62eff1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...