npm · registry.npmjs.org

@hasna/cloud

Install Lifecycle Suppresses Failure: postinstall="mkdir -p $HOME/.hasna/cloud 2>/dev/null || true; test -f $HOME/.hasna/cloud/config.json || printf '{\"rds\":{\"host\":\"hasnaxyz-prod-opensource.c4limg0qgqvk.us-east-1.rds.amazonaws.com\",\"port\":5432,\"username\":\"\",\"password_env\":\"HASNA_RDS_PASSWORD\",\"ssl\":true},\"mode\":\"local\",\"feedback_endpoint\":\"https://feedback.hasna.com/api/v1/feedback\",\"auto_sync_interval_minutes\":0,\"sync\":{\"schedule_minutes\":0}}\\n' > $HOME/.hasna/cloud/config.json 2>/dev/null || true"

Why PkgRadar flagged 0.1.34

Severity	Signal	Evidence
high	Install Lifecycle Suppresses Failure	postinstall="mkdir -p $HOME/.hasna/cloud 2>/dev/null \|\| true; test -f $HOME/.hasna/cloud/config.json \|\| printf '{\"rds\":{\"host\":\"hasnaxyz-prod-opensource.c4limg0qgqvk.us-east-1.rds.amazonaws.com\",\"port\":5432,\"username\":\"\",\"password_env\":\"HASNA_RDS_PASSWORD\",\"ssl\":true},\"mode\":\"local\",\"feedback_endpoint\":\"https://feedback.hasna.com/api/v1/feedback\",\"auto_sync_interval_minutes\":0,\"sync\":{\"schedule_minutes\":0}}\\n' > $HOME/.hasna/cloud/config.json 2>/dev/null \|\| true" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.1.34`	High risk	25	2026-06-10
`0.1.32`	High risk	25	2026-06-10
`0.1.33`	High risk	25	2026-06-10
`0.1.30`	High risk	25	2026-06-10
`0.1.31`	High risk	25	2026-06-10
`0.1.35`	Low risk	0	2026-06-07

Block this in CI

PkgRadar gates @hasna/cloud (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @hasna/[email protected]

Start free — 25 scans / mo View full evidence