PkgRadar

npm · registry.npmjs.org

@crisp-e3/contracts

Remote Dependency Spec: devDependencies.forge-std="github:foundry-rs/forge-std#v1.9.4"

Why PkgRadar flagged 0.9.0

SeveritySignalEvidence
mediumRemote Dependency SpecdevDependencies.forge-std="github:foundry-rs/forge-std#v1.9.4" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.9.0Review52026-05-28
0.10.0Review52026-05-28

Block this in CI

PkgRadar gates @crisp-e3/contracts (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @crisp-e3/[email protected]
Start free — 25 scans / moView full evidence