npm · registry.npmjs.org
@alan-zhao/yolk-pi-web
Reverse Shell, Suspicious Publish Context
Why PkgRadar flagged 0.7.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Reverse Shell | — |
| medium | Suspicious Publish Context | — |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.7.0 | High risk | 50 | 2026-07-01 |
0.7.1 | High risk | 50 | 2026-07-01 |
Related campaigns
- Reverse Shell — 294 releases, max score 140
Block this in CI
pkgradar gate --ecosystem npm @alan-zhao/[email protected]