PkgRadar

npm · registry.npmjs.org

@duetso/agent

Remote Payload: matched "curl "

Why PkgRadar flagged 0.1.155

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · package/dist/src/guardrails/pattern.js

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.191Low risk02026-06-11
0.1.190Low risk02026-06-11
0.1.189Low risk02026-06-09
0.1.188Low risk02026-06-09
0.1.187Low risk02026-06-08
0.1.186Low risk02026-06-08
0.1.185Low risk02026-06-05
0.1.183Low risk02026-06-05
0.1.182Low risk02026-06-05
0.1.181Low risk02026-06-05
0.1.180Low risk02026-06-05
0.1.179Low risk02026-06-05
0.1.178Low risk02026-06-04
0.1.177Low risk02026-06-04
0.1.176Low risk02026-06-04
0.1.175Low risk02026-06-04
0.1.173Low risk02026-06-03
0.1.174Low risk02026-06-03
0.1.172Low risk02026-06-03
0.1.171Low risk02026-06-03
0.1.170Low risk02026-06-02
0.1.169Low risk02026-06-02
0.1.168Low risk02026-06-01
0.1.167Low risk02026-05-31
0.1.166Low risk02026-05-29
0.1.164Low risk02026-05-28
0.1.163Low risk02026-05-28
0.1.161Low risk02026-05-27
0.1.162Low risk02026-05-27
0.1.159Low risk02026-05-26
0.1.160Low risk02026-05-26
0.1.157Low risk02026-05-25
0.1.156Low risk02026-05-25
0.1.155Review122026-05-24
0.1.152Review122026-05-24
0.1.154Review122026-05-24

Block this in CI

PkgRadar gates @duetso/agent (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @duetso/[email protected]
Start free — 25 scans / moView full evidence