PkgRadar

npm · registry.npmjs.org

@graphql-hive/laboratory

Tls Verification Disabled, Large Javascript Payload

Why PkgRadar flagged 0.1.8

SeveritySignalEvidence
mediumTls Verification Disabledpackage/dist/hive-laboratory.cjs.js

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.8Review62026-06-23
0.1.8-alpha-20260514201300-d982e5d8fb7e56bc933647e0fc842aed449a03f9Review62026-06-23
0.1.8-alpha-20260514220802-341cf2a8df8957c32ba3b885aa94af87ad2a3a8aReview62026-06-23
0.1.9-alpha-20260623095439-f5da2972a28845f611e9b54615a162575cabfe69Review62026-06-23

Block this in CI

PkgRadar gates @graphql-hive/laboratory (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @graphql-hive/[email protected]
Start free — 25 scans / moView full evidence