PkgRadar

npm · registry.npmjs.org

@ai-setting/roy-agent-coder-harness

Js Remote Npm Install, Large Javascript Payload

Why PkgRadar flagged 1.0.7

SeveritySignalEvidence
highJs Remote Npm Install

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.7High risk452026-06-30
1.0.8High risk452026-06-30
1.0.0High risk452026-06-30
1.5.50Low risk02026-06-30
1.5.48Low risk02026-06-06
1.5.47Low risk02026-06-05
1.5.46Low risk02026-06-02
1.5.45Low risk02026-06-02
1.5.41Low risk02026-05-29
1.5.40Low risk02026-05-28
1.5.36Low risk02026-05-28

Block this in CI

PkgRadar gates @ai-setting/roy-agent-coder-harness (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @ai-setting/[email protected]
Start free — 25 scans / moView full evidence
@ai-setting/roy-agent-coder-harness — npm security scan | PkgRadar