Malicious code in nodemon-gulp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04b5ac5c522b156a64f943a2d8e2dfd170230d0a23ac0bae5ada0945c7aee4c7 The package name nodemon-gulp impersonates the widely used nodemon package and collides with the legitimate gulp-nodemon. The tarball is a...