npm · registry.npmjs.org
@bubblebrain-ai/bubble
Remote Payload: matched "curl "
Why PkgRadar flagged 0.0.11
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · package/dist/bin.js |
| medium | Remote Payload | matched "curl " · package/dist/approval/danger.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.0.24 | Low risk | 0 | 2026-06-17 |
0.0.23 | Low risk | 0 | 2026-06-15 |
0.0.22 | Low risk | 0 | 2026-06-13 |
0.0.21 | Low risk | 0 | 2026-06-12 |
0.0.20 | Low risk | 0 | 2026-06-11 |
0.0.19 | Low risk | 0 | 2026-06-05 |
0.0.18 | Low risk | 0 | 2026-06-05 |
0.0.17 | Low risk | 0 | 2026-06-01 |
0.0.16 | Low risk | 0 | 2026-05-31 |
0.0.15 | Low risk | 0 | 2026-05-29 |
0.0.14 | Low risk | 0 | 2026-05-28 |
0.0.13 | Low risk | 0 | 2026-05-26 |
0.0.11 | Review | 24 | 2026-05-25 |
0.0.12 | Review | 24 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm @bubblebrain-ai/[email protected]