Malicious code in sonic-kg-tiav (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d8765cb416d290f51e091b7f41eed70c0d2949e48b83cdc84ddde54afe7c17b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...