npm · registry.npmjs.org
@ngocsangairvds/vsaf
Js Hidden Powershell: Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers.
Why PkgRadar flagged 4.2.11
| Severity | Signal | Evidence |
|---|---|---|
| high | Js Hidden Powershell | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. · package/skills/vds-skill/install-deps.mjs |
| medium | Remote Payload | matched "curl " · package/skills/vds-skill/install-deps.mjs |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
4.2.11 | High risk | 43 | 2026-06-12 |
4.2.10 | High risk | 43 | 2026-06-12 |
4.1.31 | High risk | 43 | 2026-06-10 |
4.1.29 | High risk | 43 | 2026-06-10 |
4.1.30 | High risk | 43 | 2026-06-10 |
4.1.26 | High risk | 43 | 2026-06-10 |
4.1.25 | High risk | 43 | 2026-06-10 |
4.1.23 | High risk | 43 | 2026-06-10 |
4.1.22 | High risk | 43 | 2026-06-10 |
4.1.14 | High risk | 43 | 2026-06-10 |
4.1.12 | High risk | 43 | 2026-06-10 |
4.1.3 | High risk | 35 | 2026-06-10 |
4.1.4 | High risk | 35 | 2026-06-10 |
4.1.1 | High risk | 50 | 2026-06-10 |
4.1.0 | High risk | 50 | 2026-06-10 |
4.2.9 | High risk | 43 | 2026-06-10 |
4.2.8 | High risk | 62 | 2026-06-10 |
4.2.7 | High risk | 43 | 2026-06-10 |
4.2.6 | High risk | 62 | 2026-06-10 |
4.2.5 | High risk | 62 | 2026-06-10 |
4.2.4 | High risk | 62 | 2026-06-10 |
4.2.3 | High risk | 43 | 2026-06-10 |
4.2.2 | High risk | 43 | 2026-06-10 |
4.2.1 | High risk | 43 | 2026-06-10 |
4.2.0 | High risk | 62 | 2026-06-10 |
4.2.0-preview.0 | High risk | 62 | 2026-06-10 |
4.0.17 | High risk | 50 | 2026-06-10 |
4.0.16 | High risk | 50 | 2026-06-10 |
4.2.0-preview.1 | High risk | 43 | 2026-06-01 |
Block this in CI
pkgradar gate --ecosystem npm @ngocsangairvds/[email protected]