Malicious code in subscription-fetch-orbit-hermes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1c4539a564bbc6f484d4f38280cfc4f3a247f08e4598c2bbebdb3b9d9d028bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...