Pretending to be Roblox JavaScript libraries, the two malicious npm packages were named noblox.js-proxy and noblox.js-proxies, and use typo-squatting to present themselves to anyone looking for ...