Good morning,
the AntiMalware has detected a force op command in your plugin which is vulnerable if you don't check by yourself with the spigot staff plugin
plugin : (https://www.spigotmc.org/resources/spigot-anti-malware.64982/)
[AntiMalware] [03:35:20] [INFO]: Using locale en [AntiMalware] [03:35:20] [INFO]: Initializing [AntiMalware] [03:35:20] [INFO]: Any bugs and/or false-positives should be reported either on the GitHub repo, plugin discussion page, or on the discord server [AntiMalware] [03:35:20] [INFO]: Registering checks [AntiMalware] [03:35:20] [INFO]: Finished registering checks [AntiMalware] [03:35:20] [INFO]: Setting up the Auto-Updater [AntiMalware] [03:35:20] [INFO]: Finished initializing [AntiMalware] [03:35:20] [DETECTED]: plugins\CommandNPC-1.9.1.jar MIGHT be infected with Spigot.MALWARE.ForceOP.A Class Path: me/messageofdeath/commandnpc/Listeners/NPCListener ; SourceFile/Line NPCListener.java/142 Remaining files to scan: 0