npm · registry.npmjs.org
@jacob_cruz_prizecart/threejs-reveal
Js Split Join Obfuscation: Array-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis.
Why PkgRadar flagged 1.0.134
| Severity | Signal | Evidence |
|---|---|---|
| high | Js Split Join Obfuscation | Array-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis. · package/dist/index.cjs.js |
| high | Js Split Join Obfuscation | Array-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis. · package/dist/index.es.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.134 | Review | 35 | 2026-06-12 |
1.0.133 | Review | 50 | 2026-06-11 |
1.0.132 | Review | 50 | 2026-06-11 |
1.0.131 | Review | 35 | 2026-06-09 |
1.0.130 | Review | 35 | 2026-06-03 |
1.0.129 | Review | 35 | 2026-06-03 |
1.0.127 | Low risk | 0 | 2026-06-02 |
1.0.128 | Low risk | 0 | 2026-06-02 |
1.0.124 | Low risk | 0 | 2026-06-02 |
1.0.123 | Low risk | 0 | 2026-06-02 |
1.0.122 | Low risk | 0 | 2026-06-02 |
1.0.121 | Low risk | 0 | 2026-06-02 |
1.0.120 | Low risk | 0 | 2026-06-02 |
1.0.119 | Low risk | 0 | 2026-06-02 |
1.0.118 | Low risk | 0 | 2026-06-02 |
1.0.117 | Low risk | 0 | 2026-06-02 |
1.0.116 | Low risk | 0 | 2026-06-02 |
1.0.115 | Low risk | 0 | 2026-05-31 |
1.0.113 | Low risk | 0 | 2026-05-27 |
1.0.114 | Low risk | 0 | 2026-05-27 |
1.0.112 | Low risk | 0 | 2026-05-26 |
1.0.110 | Low risk | 0 | 2026-05-26 |
1.0.109 | Low risk | 0 | 2026-05-26 |
1.0.107 | Low risk | 0 | 2026-05-26 |
1.0.106 | Low risk | 0 | 2026-05-26 |
1.0.104 | Low risk | 0 | 2026-05-25 |
1.0.105 | Low risk | 0 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm @jacob_cruz_prizecart/[email protected]