npm · registry.npmjs.org

@1claw/cli

Remote Payload

Why PkgRadar flagged 0.35.0

Severity	Signal	Evidence
medium	Remote Payload	package/dist/src/docker/base/healthcheck.sh

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.35.0`	Review	8	2026-06-25
`0.34.7`	Low risk	0	2026-06-22
`0.34.6`	Low risk	0	2026-06-22
`0.34.5`	Low risk	0	2026-06-22
`0.34.4`	Low risk	0	2026-06-22
`0.34.2`	Low risk	0	2026-06-22
`0.34.1`	Low risk	0	2026-06-22
`0.34.0`	Low risk	0	2026-06-22
`0.32.2`	Low risk	0	2026-06-09
`0.32.1`	Low risk	0	2026-06-05
`0.32.0`	Low risk	0	2026-06-05
`0.31.0`	Low risk	0	2026-06-01
`0.30.0`	Low risk	0	2026-06-01
`0.29.1`	Low risk	0	2026-06-01
`0.29.0`	Low risk	0	2026-05-30
`0.27.0`	Low risk	0	2026-05-29
`0.28.0`	Low risk	0	2026-05-29

Block this in CI

PkgRadar gates @1claw/cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @1claw/[email protected]