npm · registry.npmjs.org

@hasna/browser

Install Lifecycle Suppresses Failure: postinstall="mkdir -p $HOME/.hasna/browser/{screenshots,pdfs,states,downloads,profiles,persistent,diffs,exports,scripts} 2>/dev/null || true"

Why PkgRadar flagged 0.4.9

Severity	Signal	Evidence
high	Install Lifecycle Suppresses Failure	postinstall="mkdir -p $HOME/.hasna/browser/{screenshots,pdfs,states,downloads,profiles,persistent,diffs,exports,scripts} 2>/dev/null \|\| true" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.4.9`	High risk	25	2026-06-10
`0.4.8`	High risk	25	2026-06-10
`0.4.7`	High risk	25	2026-06-10
`0.4.13`	High risk	25	2026-06-10
`0.4.12`	High risk	25	2026-06-10
`0.4.11`	High risk	17	2026-06-10
`0.4.10`	High risk	25	2026-06-10
`0.4.6`	High risk	17	2026-06-10
`0.4.5`	High risk	25	2026-06-10

Block this in CI

PkgRadar gates @hasna/browser (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @hasna/[email protected]

Start free — 25 scans / mo View full evidence