npm · registry.npmjs.org

@infersec/conduit

Large Javascript Payload: 3755469 bytes

Why PkgRadar flagged 1.56.0

Severity	Signal	Evidence
medium	Large Javascript Payload	3755469 bytes · package/dist/cli.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`1.67.0`	Low risk	0	2026-06-10
`1.66.0`	Low risk	0	2026-06-08
`1.65.0`	Low risk	0	2026-06-03
`1.64.0`	Low risk	0	2026-06-03
`1.63.0`	Low risk	0	2026-06-03
`1.62.0`	Low risk	0	2026-06-02
`1.61.1`	Low risk	0	2026-06-02
`1.61.0`	Low risk	0	2026-06-02
`1.60.1`	Low risk	0	2026-06-02
`1.60.0`	Low risk	0	2026-06-01
`1.59.0`	Low risk	0	2026-05-31
`1.58.1`	Low risk	0	2026-05-30
`1.58.0`	Low risk	0	2026-05-29
`1.57.0`	Low risk	0	2026-05-29
`1.56.0`	Review	10	2026-05-27
`1.55.0`	Review	10	2026-05-27
`1.54.0`	Review	10	2026-05-27
`1.53.1`	Review	10	2026-05-26
`1.52.0`	Review	10	2026-05-25
`1.53.0`	Review	10	2026-05-25

Block this in CI

PkgRadar gates @infersec/conduit (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @infersec/[email protected]