npm · registry.npmjs.org
@cityofzion/blockchain-service
Remote Dependency Spec: dependencies.@moonlight-io/asteroid-sdk-js="git+https://github.com/Moonlight-io/asteroid-sdk-js"
Why PkgRadar flagged 0.4.1
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Dependency Spec | dependencies.@moonlight-io/asteroid-sdk-js="git+https://github.com/Moonlight-io/asteroid-sdk-js" · package.json |
| medium | New Remote Dependency Vs Previous | dependencies.@moonlight-io/asteroid-sdk-js added in 0.4.1 vs 0.4.0: "git+https://github.com/Moonlight-io/asteroid-sdk-js" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
3.1.18 | Low risk | 0 | 2026-06-17 |
3.1.17 | Low risk | 0 | 2026-06-17 |
3.1.14 | Low risk | 0 | 2026-06-17 |
0.4.1 | Review | 24 | 2026-06-17 |
0.4.2 | Review | 6 | 2026-06-17 |
3.1.15 | Low risk | 0 | 2026-06-01 |
3.1.16 | Low risk | 0 | 2026-06-01 |
Block this in CI
pkgradar gate --ecosystem npm @cityofzion/[email protected]