PkgRadar

npm · registry.npmjs.org

@droppii-org/chat-mobile

Remote Dependency Spec: dependencies.@droppii/openim-rn-client-sdk="git+ssh://[email protected]/droppii/open-im-sdk-reactnative.git#v1.0.0-rc5"

Why PkgRadar flagged 0.2.4

SeveritySignalEvidence
mediumRemote Dependency Specdependencies.@droppii/openim-rn-client-sdk="git+ssh://[email protected]/droppii/open-im-sdk-reactnative.git#v1.0.0-rc5" · package.json
mediumRemote Dependency SpecdevDependencies.@droppii/libs="git+ssh://[email protected]:droppii/mobile-components.git#v1.1.13" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.2.4Review62026-06-17
0.2.2Review62026-06-17
0.2.3Review62026-06-17
0.2.0Review202026-06-17
0.2.1Review62026-06-17

Block this in CI

PkgRadar gates @droppii-org/chat-mobile (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @droppii-org/[email protected]
Start free — 25 scans / moView full evidence