npm · registry.npmjs.org
@nycpickleball/cli
Remote Dependency Spec: dependencies.xlsx="https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz"
Why PkgRadar flagged 1.14.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Remote Dependency Spec | dependencies.xlsx="https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.14.0 | High risk | 12 | 2026-06-20 |
1.13.0 | High risk | 12 | 2026-06-20 |
1.12.0 | High risk | 12 | 2026-06-20 |
1.11.0 | High risk | 12 | 2026-06-20 |
1.10.0 | High risk | 12 | 2026-06-20 |
1.9.2 | High risk | 12 | 2026-06-20 |
1.9.1 | High risk | 12 | 2026-06-20 |
1.9.0 | High risk | 12 | 2026-06-20 |
1.8.1 | High risk | 12 | 2026-06-20 |
1.7.0 | High risk | 12 | 2026-06-20 |
1.8.0 | High risk | 12 | 2026-06-20 |
1.6.1 | High risk | 12 | 2026-06-20 |
1.6.0 | High risk | 12 | 2026-06-20 |
1.5.0 | High risk | 12 | 2026-06-20 |
1.4.0 | High risk | 12 | 2026-06-20 |
1.3.0 | High risk | 12 | 2026-06-20 |
1.2.2 | High risk | 12 | 2026-06-20 |
1.2.1 | High risk | 12 | 2026-06-20 |
1.2.0 | High risk | 24 | 2026-06-20 |
1.1.1 | Low risk | 0 | 2026-06-20 |
1.1.0 | Low risk | 0 | 2026-06-20 |
1.0.0 | Low risk | 0 | 2026-06-20 |
Block this in CI
pkgradar gate --ecosystem npm @nycpickleball/[email protected]