npm · registry.npmjs.org
@gpustack/core-ui
Remote Dependency Spec: dependencies.lamejs="github:zhuker/lamejs"
Why PkgRadar flagged 1.0.27
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Dependency Spec | dependencies.lamejs="github:zhuker/lamejs" · package.json |
| high | Remote Dependency Spec | dependencies.xlsx="https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.27 | High risk | 24 | 2026-06-12 |
1.0.25 | High risk | 24 | 2026-06-11 |
1.0.26 | High risk | 24 | 2026-06-11 |
1.0.24 | High risk | 24 | 2026-06-10 |
1.0.23 | High risk | 24 | 2026-06-10 |
1.0.22 | High risk | 24 | 2026-06-10 |
1.0.21 | High risk | 24 | 2026-06-10 |
1.0.20 | High risk | 24 | 2026-06-10 |
1.0.19 | Review | 64 | 2026-05-29 |
1.0.18 | Review | 64 | 2026-05-29 |
1.0.17 | Review | 74 | 2026-05-28 |
1.0.14 | Review | 51 | 2026-05-25 |
1.0.16 | Review | 51 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm @gpustack/[email protected]