PkgRadar

npm · registry.npmjs.org

@gooddata/reference-workspace

Remote Payload: matched "curl\n "

Why PkgRadar flagged 11.37.0-alpha.4

SeveritySignalEvidence
mediumRemote Payloadmatched "curl\n " · package/esm/md/full.js

Scanned versions

VersionVerdictScoreScanned (UTC)
11.42.0-alpha.4Low risk02026-06-17
11.42.0-alpha.3Low risk02026-06-16
11.42.0-alpha.2Low risk02026-06-15
11.42.0-alpha.1Low risk02026-06-12
11.42.0-alpha.0Low risk02026-06-11
11.41.0Low risk02026-06-11
11.41.0-alpha.5Low risk02026-06-11
11.41.0-alpha.4Low risk02026-06-11
11.41.0-alpha.3Low risk02026-06-09
11.41.0-alpha.2Low risk02026-06-08
11.41.0-alpha.1Low risk02026-06-05
11.41.0-alpha.0Low risk02026-06-04
11.40.0Low risk02026-06-04
11.40.0-alpha.6Low risk02026-06-04
11.40.0-alpha.5Low risk02026-06-03
11.40.0-alpha.4Low risk02026-06-02
11.40.0-alpha.3Low risk02026-06-01
11.40.0-alpha.2Low risk02026-06-01
11.40.0-alpha.1Low risk02026-05-29
11.39.0Low risk02026-05-28
11.40.0-alpha.0Low risk02026-05-28
11.39.0-alpha.4Low risk02026-05-28
11.39.0-alpha.3Low risk02026-05-27
11.39.0-alpha.2Low risk02026-05-26
11.39.0-alpha.1Low risk02026-05-26
11.38.0Low risk02026-05-25
11.39.0-alpha.0Low risk02026-05-25
11.37.0-alpha.4Review122026-05-25
11.37.0-alpha.5Review122026-05-25

Block this in CI

PkgRadar gates @gooddata/reference-workspace (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @gooddata/[email protected]
Start free — 25 scans / moView full evidence