Malicious code detected in tile.json: This is a typosquatting/supply chain attack. The package name 'tessl/npm-react-addons-transition-group' mimics the legitimate 'react-addons-transition-group' package by prepending 'npm-' to the name. The 'describes' field references the real package 'pkg:npm/react-addons-transition-group@15.6.2' while this tile claims to be version 15.6.1, suggesting it's designed to intercept installations intended for the legitimate package. This is a classic dependency confusion/typosquatting pattern used in supply chain attacks.