JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
Unfortunately you've used all of your gifts this month. Your counter will reset on the first day of next month.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results