PkgRadar

npm · registry.npmjs.org

@drifted/assets

Obfuscation Density: high encoded/escaped-token density

Why PkgRadar flagged 0.0.111

SeveritySignalEvidence
mediumObfuscation Densityhigh encoded/escaped-token density · package/public/marked.js
mediumRemote Payloadmatched "curL " · package/public/openpgp.js
mediumLarge Javascript Payload2322049 bytes · package/public/dependencies.js

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.134Low risk02026-06-06
0.0.133Low risk02026-06-06
0.0.132Low risk02026-06-06
0.0.131Low risk02026-06-06
0.0.130Low risk02026-06-05
0.0.122Low risk02026-06-04
0.0.123Low risk02026-06-04
0.0.118Low risk02026-06-04
0.0.120Low risk02026-06-04
0.0.111Review342026-05-27
0.0.112Review342026-05-27

Block this in CI

PkgRadar gates @drifted/assets (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @drifted/[email protected]
Start free — 25 scans / moView full evidence
@drifted/assets — npm security scan | PkgRadar