MAL-2025-147530 Malicious code in rollup-postcss-loader-xanadu-relay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f558dd12ed39569dd372e118be9afd8a3636ac8fdaff883749c0113325e68b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...