npm · registry.npmjs.org
@agoric/wallet
Manifest Codeless Dependency Stub: package ships no JS/TS source but declares 3 dependency(ies) (0 with loose/empty version specs) — dependency-confusion / install-chain loader shape
Why PkgRadar flagged 0.18.4-dev-b85a94d.0.b85a94d
| Severity | Signal | Evidence |
|---|---|---|
| medium | Manifest Codeless Dependency Stub | package ships no JS/TS source but declares 3 dependency(ies) (0 with loose/empty version specs) — dependency-confusion / install-chain loader shape · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.18.4-dev-b85a94d.0.b85a94d | Review | 4 | 2026-06-13 |
0.18.4-dev-4833f45.0.4833f45 | Review | 4 | 2026-06-12 |
0.18.4-dev-488dec7.0.488dec7 | Review | 4 | 2026-06-12 |
0.18.4-dev-57c6564.0.57c6564 | Review | 4 | 2026-06-10 |
0.18.4-dev-3294e0c.0.3294e0c | Review | 4 | 2026-06-10 |
0.18.4-dev-79a22bb.0.79a22bb | Review | 4 | 2026-06-10 |
0.18.4-dev-2da8e5c.0.2da8e5c | Review | 4 | 2026-06-10 |
0.17.1-dev-ab5468e.0 | Low risk | 0 | 2026-06-10 |
0.17.1-dev-b43e34b.0 | Low risk | 0 | 2026-06-10 |
0.19.0 | Low risk | 0 | 2026-06-10 |
0.17.1-dev-774d9d5.0 | Low risk | 0 | 2026-06-10 |
0.18.4-dev-9f5ae11.0.9f5ae11 | Review | 7 | 2026-06-03 |
0.18.4-dev-a1aec5d.0.a1aec5d | Review | 7 | 2026-06-02 |
0.18.4-dev-6deecfc.0.6deecfc | Review | 7 | 2026-06-02 |
0.18.4-dev-04fc8aa.0.04fc8aa | Review | 7 | 2026-06-01 |
0.18.4-dev-998649a.0.998649a | Review | 7 | 2026-06-01 |
0.18.4-dev-f91b21f.0.f91b21f | Low risk | 0 | 2026-05-29 |
0.18.4-dev-0e3d0e8.0.0e3d0e8 | Low risk | 0 | 2026-05-27 |
0.18.4-dev-159ee8a.0.159ee8a | Low risk | 0 | 2026-05-25 |
0.18.4-dev-df17b1b.0.df17b1b | Low risk | 0 | 2026-05-25 |
0.18.4-dev-925b831.0.925b831 | Low risk | 0 | 2026-05-25 |
0.18.4-dev-b0cb8c0.0.b0cb8c0 | Low risk | 0 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm @agoric/[email protected]