MAL-2025-164986 Malicious code in rival-poke107 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d895029d35bbdbe8cbd13ef9cc644e61324843beb4a41628cf0ed08fe2bf624 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...