PkgRadar

npm · registry.npmjs.org

@gobi-ai/cli

Js Remote Npm Install

Why PkgRadar flagged 2.0.33

SeveritySignalEvidence
highJs Remote Npm Installpackage/dist/commands/update.js

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
2.0.33High risk452026-06-24
2.0.32Low risk02026-06-12
2.0.31Low risk02026-06-12
2.0.30Low risk02026-06-01
2.0.29Low risk02026-05-29
2.0.28Low risk02026-05-29
2.0.27Low risk02026-05-29
2.0.26Low risk02026-05-29
2.0.25Low risk02026-05-29
2.0.23Low risk02026-05-27
2.0.24Low risk02026-05-27

Block this in CI

PkgRadar gates @gobi-ai/cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @gobi-ai/[email protected]
Start free — 25 scans / moView full evidence