npm · registry.npmjs.org
@nativescript/vite
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged 8.0.0-alpha.21
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · package/hmr/shared/runtime/root-placeholder.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
8.0.0-alpha.44 | Low risk | 0 | 2026-06-16 |
8.0.0-alpha.43 | Low risk | 0 | 2026-06-15 |
8.0.0-alpha.42 | Low risk | 0 | 2026-06-15 |
8.0.0-alpha.41 | Low risk | 0 | 2026-06-14 |
8.0.0-alpha.40 | Low risk | 0 | 2026-06-14 |
8.0.0-alpha.38 | Low risk | 0 | 2026-06-12 |
8.0.0-alpha.39 | Low risk | 0 | 2026-06-12 |
8.0.0-alpha.37 | Low risk | 0 | 2026-06-11 |
8.0.0-alpha.36 | Low risk | 0 | 2026-06-10 |
8.0.0-alpha.35 | Low risk | 0 | 2026-06-10 |
2.0.3 | Low risk | 0 | 2026-06-10 |
8.0.0-alpha.34 | Low risk | 0 | 2026-06-10 |
8.0.0-alpha.33 | Low risk | 0 | 2026-06-09 |
8.0.0-alpha.32 | Low risk | 0 | 2026-06-09 |
8.0.0-alpha.31 | Low risk | 0 | 2026-06-01 |
8.0.0-alpha.30 | Low risk | 0 | 2026-05-31 |
8.0.0-alpha.29 | Low risk | 0 | 2026-05-30 |
8.0.0-alpha.28 | Low risk | 0 | 2026-05-30 |
8.0.0-alpha.27 | Low risk | 0 | 2026-05-30 |
8.0.0-alpha.26 | Low risk | 0 | 2026-05-29 |
8.0.0-alpha.25 | Low risk | 0 | 2026-05-29 |
8.0.0-alpha.24 | Low risk | 0 | 2026-05-27 |
8.0.0-alpha.23 | Low risk | 0 | 2026-05-27 |
8.0.0-alpha.21 | Review | 12 | 2026-05-24 |
8.0.0-alpha.22 | Review | 12 | 2026-05-24 |
Block this in CI
pkgradar gate --ecosystem npm @nativescript/[email protected]