npm · registry.npmjs.org

@nitro-web/webpack

Remote Dependency Spec: dependencies.clean-terminal-webpack-plugin="https://github.com/boycce/clean-terminal-webpack-plugin.git"

Why PkgRadar flagged 0.2.7

Severity	Signal	Evidence
high	Remote Dependency Spec	dependencies.clean-terminal-webpack-plugin="https://github.com/boycce/clean-terminal-webpack-plugin.git" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.2.7`	High risk	6	2026-06-17
`0.2.6`	High risk	6	2026-06-15
`0.2.5`	High risk	6	2026-06-15
`0.2.4`	High risk	6	2026-06-10
`0.2.1`	High risk	6	2026-06-10
`0.2.3`	High risk	6	2026-06-10
`0.2.2`	High risk	6	2026-06-10

Block this in CI

PkgRadar gates @nitro-web/webpack (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @nitro-web/[email protected]