PkgRadar

npm · registry.npmjs.org

@juit/check-updates

Credential file access: matched ".npmrc"

Why PkgRadar flagged 3.0.39

SeveritySignalEvidence
mediumCredential file accessmatched ".npmrc" · package/dist/npmrc.mjs
mediumCredential file accessmatched ".npmrc" · package/src/npmrc.ts

Scanned versions

VersionVerdictScoreScanned (UTC)
3.0.39Review72026-06-12
3.0.38Review72026-06-05
3.0.36Review72026-05-29
3.0.37Review72026-05-29

Block this in CI

PkgRadar gates @juit/check-updates (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @juit/[email protected]
Start free — 25 scans / moView full evidence