PkgRadar

npm · registry.npmjs.org

@kong-ui-public/analytics-utilities

Manifest Codeless Dependency Stub: package ships no JS/TS source but declares 4 dependency(ies) (0 with loose/empty version specs) — dependency-confusion / install-chain loader shape

Why PkgRadar flagged 12.18.1-pr.3447.fdf66d7b4.0

SeveritySignalEvidence
mediumManifest Codeless Dependency Stubpackage ships no JS/TS source but declares 4 dependency(ies) (0 with loose/empty version specs) — dependency-confusion / install-chain loader shape · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
12.18.1-pr.3462.a32f93d44.0Low risk02026-06-18
12.18.1-pr.3462.a1000cfa8.0Low risk02026-06-18
12.18.1-pr.3462.9338a76f1.0Low risk02026-06-17
12.18.1-pr.3462.6ba406ae1.0Low risk02026-06-17
12.18.1-pr.3447.fdf66d7b4.0Review42026-06-17
12.18.1-pr.3447.1bfd50f79.0Review42026-06-17
12.18.0Low risk02026-06-16
12.17.3-pr.3449.9c600fd3c.0Low risk02026-06-16
12.17.2Low risk02026-06-11
12.17.1Low risk02026-06-11
12.16.4-pr.3409.0804e7f5a.0Low risk02026-06-03
12.17.0Low risk02026-06-03
12.16.4-pr.3409.60c75b119.0Low risk02026-06-03
12.16.3-pr.3401.08d75964e.0Low risk02026-06-02
12.16.4-pr.3399.1df23b327.0Low risk02026-06-02
12.16.3-pr.3401.0894b6c20.0Low risk02026-06-02
12.16.2-pr.3374.ce2935a7a.0Low risk02026-06-02
12.16.3-pr.3401.4c1f2336e.0Low risk02026-06-02
12.16.3Low risk02026-06-02
12.16.2-pr.3400.c4d5fde77.0Low risk02026-06-01
12.16.2-pr.3400.b3d5d6e04.0Low risk02026-06-01
12.16.3-pr.3399.a60102b91.0Low risk02026-06-01
12.16.2-pr.3374.531fd8d20.0Low risk02026-06-01
12.16.2-pr.3375.b9741842d.0Low risk02026-05-28
12.16.2Low risk02026-05-28
12.16.2-pr.3365.d97891dff.0Low risk02026-05-27
12.16.1Low risk02026-05-27

Block this in CI

PkgRadar gates @kong-ui-public/analytics-utilities (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @kong-ui-public/[email protected]
Start free — 25 scans / moView full evidence