PkgRadar

npm · registry.npmjs.org

@ellxz24/baileys

New Account With Lifecycle Hook, Remote Payload, Remote Dependency Spec +3 more

Why PkgRadar flagged 2.0.29

SeveritySignalEvidence
highNew Account With Lifecycle Hookpackage.json
mediumRemote Payloadpackage/lib/Socket/newsletter.js
mediumSuspicious Publish Context
mediumRemote Dependency Specpackage.json

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
2.0.32Review352026-06-23
2.0.30Review352026-06-23
2.0.31Review352026-06-23
2.0.29High risk352026-06-23
2.0.28High risk352026-06-23
2.0.27High risk352026-06-23
2.0.25High risk472026-06-23
2.0.26High risk352026-06-23

Block this in CI

PkgRadar gates @ellxz24/baileys (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @ellxz24/[email protected]
Start free — 25 scans / moView full evidence