PkgRadar

npm · registry.npmjs.org

@hasna/projects

Install Lifecycle Suppresses Failure: postinstall="mkdir -p $HOME/.hasna/projects 2>/dev/null || true"

Why PkgRadar flagged 0.1.57

SeveritySignalEvidence
highInstall Lifecycle Suppresses Failurepostinstall="mkdir -p $HOME/.hasna/projects 2>/dev/null || true" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.57High risk252026-06-16
0.1.56High risk252026-06-16
0.1.48High risk302026-06-10
0.1.47High risk302026-06-10
0.1.46High risk302026-06-10
0.1.45High risk302026-06-10
0.1.55High risk252026-06-10
0.1.53High risk252026-06-10
0.1.54High risk252026-06-10
0.1.52High risk252026-06-10
0.1.50High risk302026-06-10
0.1.51High risk302026-06-10
0.1.49High risk302026-06-10
0.1.43High risk302026-06-10
0.1.44High risk302026-06-10

Block this in CI

PkgRadar gates @hasna/projects (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @hasna/[email protected]
Start free — 25 scans / moView full evidence