npm · registry.npmjs.org
@heyanon-arp/cli
New Account With Lifecycle Hook: package first published 19 day(s) ago, 10 total version(s), has lifecycle hook
Why PkgRadar flagged 0.0.7
| Severity | Signal | Evidence |
|---|---|---|
| high | New Lifecycle Script Vs Previous | postinstall added in 0.0.7 vs 0.0.6: "node scripts/postinstall.mjs" · package.json |
| medium | New Account With Lifecycle Hook | package first published 19 day(s) ago, 10 total version(s), has lifecycle hook · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.0.14 | Low risk | 0 | 2026-06-10 |
0.0.13 | Low risk | 0 | 2026-06-10 |
0.0.11 | Low risk | 0 | 2026-06-10 |
0.0.12 | Low risk | 0 | 2026-06-10 |
0.0.7 | High risk | 45 | 2026-06-10 |
0.0.10 | Low risk | 0 | 2026-06-08 |
0.0.9 | Review | 5 | 2026-06-08 |
0.0.8 | Review | 5 | 2026-06-05 |
0.0.6 | Low risk | 0 | 2026-06-03 |
0.0.5 | Low risk | 0 | 2026-05-28 |
0.0.4 | Low risk | 0 | 2026-05-26 |
0.0.3 | Low risk | 0 | 2026-05-26 |
Campaign attribution
Block this in CI
pkgradar gate --ecosystem npm @heyanon-arp/[email protected]