PkgRadar

npm · registry.npmjs.org

@milaboratories/milaboratories.monetization-test

Manifest Codeless Dependency Stub: package ships no JS/TS source but declares 3 dependency(ies) (0 with loose/empty version specs) — dependency-confusion / install-chain loader shape

Why PkgRadar flagged 1.4.56

SeveritySignalEvidence
mediumManifest Codeless Dependency Stubpackage ships no JS/TS source but declares 3 dependency(ies) (0 with loose/empty version specs) — dependency-confusion / install-chain loader shape · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
1.4.57Low risk02026-06-12
1.4.56Review72026-06-11
1.4.55Review72026-06-11
1.4.54Review72026-06-11
1.4.52Review72026-06-10
1.4.53Review72026-06-10
1.4.51Review72026-06-09
1.4.50Review72026-06-09
1.4.49Review72026-06-09
1.4.48Review72026-06-08
1.4.47Review72026-06-05
1.4.46Review72026-06-05
1.4.45Review72026-06-05
1.4.44Review72026-06-05
1.4.43Review72026-06-04
1.4.42Review72026-06-03
1.4.41Review72026-06-03
1.4.40Review72026-06-02
1.4.39Review72026-06-02
1.4.38Review72026-06-01
1.4.37Review72026-06-01
1.4.36Review72026-06-01
1.4.35Low risk02026-05-29
1.4.34Low risk02026-05-29
1.4.33Low risk02026-05-28
1.4.32Low risk02026-05-28
1.4.30Low risk02026-05-26
1.4.31Low risk02026-05-26
1.4.29Low risk02026-05-25
1.4.28Low risk02026-05-25

Block this in CI

PkgRadar gates @milaboratories/milaboratories.monetization-test (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @milaboratories/[email protected]
Start free — 25 scans / moView full evidence