PkgRadar

npm · registry.npmjs.org

@mintlify/cli

Js Split Join Obfuscation: Array-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis.

Why PkgRadar flagged 4.0.1190

SeveritySignalEvidence
highJs Split Join ObfuscationArray-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis. · package/bin/analytics/index.js

Scanned versions

VersionVerdictScoreScanned (UTC)
4.0.1218Low risk02026-06-11
4.0.1219Low risk02026-06-11
4.0.1217Low risk02026-06-11
4.0.1216Low risk02026-06-10
4.0.1215Low risk02026-06-10
4.0.1214Low risk02026-06-10
4.0.1213Low risk02026-06-10
4.0.1212Low risk02026-06-10
4.0.1211Low risk02026-06-10
4.0.1209Low risk02026-06-10
4.0.1210Low risk02026-06-10
4.0.1208Low risk02026-06-09
4.0.1207Low risk02026-06-09
4.0.1206Low risk02026-06-09
4.0.1205Low risk02026-06-08
4.0.1204Low risk02026-06-08
4.0.1203Low risk02026-06-08
4.0.1202Low risk02026-06-08
4.0.1201Low risk02026-06-06
4.0.1200Low risk02026-06-06
4.0.1199Low risk02026-06-05
4.0.1198Low risk02026-06-05
4.0.1197Low risk02026-06-04
4.0.1196Low risk02026-06-04
4.0.1195Low risk02026-06-04
4.0.1194Low risk02026-06-03
4.0.1193Low risk02026-06-03
4.0.1192Low risk02026-06-02
4.0.1191Low risk02026-06-01
4.0.1190Review122026-05-30
4.0.1189Review122026-05-29
4.0.1188Review122026-05-28
4.0.1187Review122026-05-28
4.0.1186Low risk02026-05-28
4.0.1185Low risk02026-05-28
4.0.1180Low risk02026-05-27
4.0.1181Low risk02026-05-27

Block this in CI

PkgRadar gates @mintlify/cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @mintlify/[email protected]
Start free — 25 scans / moView full evidence