npm · registry.npmjs.org
@invarn/cibuild
Webhook Exfil Endpoint: matched "hooks.slack.com/services/"
Why PkgRadar flagged 2.0.4
| Severity | Signal | Evidence |
|---|---|---|
| high | Webhook Exfil Endpoint | matched "hooks.slack.com/services/" · package/dist/cli.cjs |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
2.0.9 | Review | 40 | 2026-06-17 |
2.0.8 | Review | 24 | 2026-06-14 |
2.0.7 | Review | 28 | 2026-06-14 |
2.0.6 | Review | 24 | 2026-06-14 |
2.0.5 | Review | 28 | 2026-06-14 |
2.0.4 | High risk | 56 | 2026-06-13 |
2.0.2 | Review | 28 | 2026-06-13 |
2.0.3 | High risk | 56 | 2026-06-13 |
2.0.1 | Review | 35 | 2026-06-11 |
2.0.0 | High risk | 75 | 2026-06-10 |
1.9.9 | High risk | 80 | 2026-06-10 |
1.9.8 | High risk | 80 | 2026-06-10 |
1.9.6 | High risk | 80 | 2026-06-10 |
1.9.3 | High risk | 80 | 2026-06-10 |
1.9.7 | Review | 40 | 2026-06-08 |
1.9.5 | Review | 35 | 2026-06-08 |
1.9.4 | Review | 35 | 2026-06-07 |
1.9.1 | Review | 42 | 2026-05-26 |
1.9.2 | Review | 47 | 2026-05-26 |
Block this in CI
pkgradar gate --ecosystem npm @invarn/[email protected]