PkgRadar

npm · registry.npmjs.org

@kontourai/survey

Remote Dependency Spec: dependencies.@kontourai/surface="git+https://github.com/kontourai/surface.git#9f2a18fb2c7c2430e81879d730b2a9b37c92f017"

Why PkgRadar flagged 0.4.1

SeveritySignalEvidence
mediumRemote Dependency Specdependencies.@kontourai/surface="git+https://github.com/kontourai/surface.git#9f2a18fb2c7c2430e81879d730b2a9b37c92f017" · package.json
mediumDependency Changed To Remote Vs Previousdependencies.@kontourai/surface changed to remote spec in 0.4.1 vs 0.4.0: "git+https://github.com/kontourai/surface.git#9f2a18fb2c7c2430e81879d730b2a9b37c92f017" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.0Low risk02026-06-12
0.8.0Low risk02026-06-12
0.7.2Low risk02026-06-12
0.7.1Low risk02026-06-12
0.7.0Low risk02026-06-12
0.6.0Low risk02026-06-12
0.5.2Low risk02026-06-11
0.5.1Low risk02026-06-11
0.5.0Low risk02026-06-11
0.4.24Low risk02026-06-11
0.4.23Low risk02026-06-10
0.4.22Low risk02026-06-10
0.4.21Low risk02026-06-10
0.4.20Low risk02026-06-09
0.4.17Low risk02026-06-09
0.4.19Low risk02026-06-09
0.4.16Low risk02026-06-09
0.4.15Low risk02026-06-09
0.4.14Low risk02026-06-09
0.4.13Low risk02026-06-09
0.4.12Low risk02026-06-09
0.4.11Low risk02026-06-09
0.4.10Low risk02026-06-09
0.4.9Low risk02026-06-09
0.4.8Low risk02026-06-08
0.4.7Low risk02026-06-08
0.4.6Low risk02026-06-08
0.4.5Low risk02026-06-08
0.4.4Low risk02026-06-07
0.4.3Low risk02026-06-03
0.4.1Review242026-06-03
0.4.2Low risk02026-06-02
0.4.0Low risk02026-06-02
0.3.0Low risk02026-06-01
0.2.1Low risk02026-06-01
0.2.0Low risk02026-06-01
0.1.5Low risk02026-05-31
0.1.4Low risk02026-05-31
0.1.3Low risk02026-05-31
0.1.2Low risk02026-05-31
0.1.1Low risk02026-05-31

Block this in CI

PkgRadar gates @kontourai/survey (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @kontourai/[email protected]
Start free — 25 scans / moView full evidence