PkgRadar

npm · registry.npmjs.org

@abraca/dabra

Shell Credential File Read

Why PkgRadar flagged 2.38.0

SeveritySignalEvidence
highShell Credential File Readpackage/src/AbracadabraProvider.ts

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
2.38.0High risk452026-06-23
2.37.0Low risk02026-06-20
2.36.0Low risk02026-06-20
2.35.1Low risk02026-06-20
2.35.0Low risk02026-06-20
2.34.0Low risk02026-06-18
2.33.0Low risk02026-06-17
2.32.0Low risk02026-06-17
2.31.0Low risk02026-06-15
2.30.0Low risk02026-06-14
2.29.0Low risk02026-06-13
2.28.0Low risk02026-06-13
2.27.0Low risk02026-06-13
2.26.0Low risk02026-06-13
2.25.0Low risk02026-06-12
2.24.0Low risk02026-06-12
2.23.0Low risk02026-06-11
2.22.0Low risk02026-06-10
2.21.0Low risk02026-06-10
2.20.0Low risk02026-06-03
2.19.0Low risk02026-06-01
2.18.0Low risk02026-05-31
2.17.2Low risk02026-05-30
2.17.1Low risk02026-05-30
2.16.0Low risk02026-05-28
2.17.0Low risk02026-05-28
2.14.0Low risk02026-05-28
2.15.0Low risk02026-05-28
2.13.0Low risk02026-05-27
2.11.0Low risk02026-05-27
2.10.0Low risk02026-05-25
2.9.0Low risk02026-05-25
2.7.0Low risk02026-05-24
2.8.0Low risk02026-05-24

Block this in CI

PkgRadar gates @abraca/dabra (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @abraca/[email protected]
Start free — 25 scans / moView full evidence