PkgRadar

npm · registry.npmjs.org

@consultas-de-veiculos/sdk

New Account With Lifecycle Hook: package first published 0 day(s) ago, 1 total version(s), has lifecycle hook

Why PkgRadar flagged 1.0.0

SeveritySignalEvidence
highNew Account With Lifecycle Hookpackage first published 0 day(s) ago, 1 total version(s), has lifecycle hook · package.json
mediumSuspicious Publish Context{"package_age_days":0,"publisher":"consultasdeveiculos","burst_same_day":0,"burst_week":0,"lure":null,"version_anomaly":false,"new_account":true}

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.0High risk152026-06-15

Block this in CI

PkgRadar gates @consultas-de-veiculos/sdk (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @consultas-de-veiculos/[email protected]
Start free — 25 scans / moView full evidence
@consultas-de-veiculos/sdk — npm security scan | PkgRadar