npm · registry.npmjs.org
@ai-setting/roy-agent-coder-harness
Js Remote Npm Install, Large Javascript Payload
Why PkgRadar flagged 1.0.7
| Severity | Signal | Evidence |
|---|---|---|
| high | Js Remote Npm Install | — |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.7 | High risk | 45 | 2026-06-30 |
1.0.8 | High risk | 45 | 2026-06-30 |
1.0.0 | High risk | 45 | 2026-06-30 |
1.5.50 | Low risk | 0 | 2026-06-30 |
1.5.48 | Low risk | 0 | 2026-06-06 |
1.5.47 | Low risk | 0 | 2026-06-05 |
1.5.46 | Low risk | 0 | 2026-06-02 |
1.5.45 | Low risk | 0 | 2026-06-02 |
1.5.41 | Low risk | 0 | 2026-05-29 |
1.5.40 | Low risk | 0 | 2026-05-28 |
1.5.36 | Low risk | 0 | 2026-05-28 |
Block this in CI
pkgradar gate --ecosystem npm @ai-setting/[email protected]