npm · registry.npmjs.org

@bonniernews/b0rker

Remote Dependency Spec: dependencies.lu-logger="github:BonnierNews/lu-logger#semver:^8.1.0"

Why PkgRadar flagged 10.2.1

Severity	Signal	Evidence
medium	Remote Dependency Spec	dependencies.lu-logger="github:BonnierNews/lu-logger#semver:^8.1.0" · package.json
medium	Dependency Changed To Remote Vs Previous	dependencies.lu-logger changed to remote spec in 10.2.1 vs 10.2.0: "github:BonnierNews/lu-logger#semver:^8.1.0" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`10.2.1`	Review	24	2026-06-16
`10.3.0`	Review	6	2026-06-16
`11.0.0`	Review	6	2026-06-01
`11.1.0`	Review	6	2026-06-01

Block this in CI

PkgRadar gates @bonniernews/b0rker (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @bonniernews/[email protected]