npm · registry.npmjs.org

@expo/cli

Tls Verification Disabled

Why PkgRadar flagged 56.1.13-canary-20260624-9d83b81

Severity	Signal	Evidence
medium	Tls Verification Disabled	package/build/src/run/ios/appleDevice/ClientManager.js

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`56.1.13-canary-20260624-9d83b81`	Review	3	2026-06-24
`56.1.16`	Low risk	0	2026-06-15
`56.1.15`	Low risk	0	2026-06-10
`56.1.13-canary-20260606-4d4666c`	Low risk	0	2026-06-06
`56.1.14`	Low risk	0	2026-06-05
`0.22.28`	Low risk	0	2026-06-01
`54.0.24`	Low risk	0	2026-06-01
`56.1.13`	Low risk	0	2026-05-29
`54.0.25`	Low risk	0	2026-05-29
`56.1.13-canary-20260526-6cd5e37`	Low risk	0	2026-05-27
`56.1.12`	Low risk	0	2026-05-26
`56.1.11`	Low risk	0	2026-05-26
`57.0.0-canary-20260526-13e89ca`	Low risk	0	2026-05-26

Block this in CI

PkgRadar gates @expo/cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @expo/[email protected]