npm · registry.npmjs.org
@codeyam/codeyam-cli
Remote Payload: matched "curl "
Why PkgRadar flagged 0.1.37
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · package/codeyam-cli/src/webserver/build/server/assets/server-build-CNvgz1cC.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.1.37 | Review | 5 | 2026-06-08 |
0.1.0-staging.c21fa76 | Review | 5 | 2026-06-08 |
0.1.0-staging.b49802d | Review | 5 | 2026-06-02 |
0.1.36 | Review | 5 | 2026-06-02 |
0.1.0-staging.fff1b4e | Review | 5 | 2026-06-02 |
0.1.35 | Review | 5 | 2026-06-02 |
0.1.34 | Review | 5 | 2026-06-02 |
0.1.0-staging.121e983 | Review | 5 | 2026-06-02 |
Block this in CI
pkgradar gate --ecosystem npm @codeyam/[email protected]