PkgRadar

npm · registry.npmjs.org

@oracle/oraclejet-templates

Remote Dependency Spec: dependencies.@oracle/oraclejet="https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-20.0.0.tgz"

Why PkgRadar flagged 20.0.0

SeveritySignalEvidence
highRemote Dependency Specdependencies.@oracle/oraclejet="https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-20.0.0.tgz" · package.json
highRemote Dependency Specdependencies.@oracle/oraclejet-core-pack="https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-core-pack-20.0.0.tgz" · package.json
highDependency Changed To Remote Vs Previousdependencies.@oracle/oraclejet changed to remote spec in 20.0.0 vs 19.0.0: "https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-20.0.0.tgz" · package.json
highDependency Changed To Remote Vs Previousdependencies.@oracle/oraclejet-core-pack changed to remote spec in 20.0.0 vs 19.0.0: "https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-core-pack-20.0.0.tgz" · package.json
mediumRemote Dependency SpecdevDependencies.@oracle/ojet-cli="https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-ojet-cli-20.0.0.tgz" · package.json
mediumRemote Dependency SpecdevDependencies.@oracle/oraclejet-webdriver="https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-webdriver-20.0.0.tgz" · package.json
mediumDependency Changed To Remote Vs PreviousdevDependencies.@oracle/ojet-cli changed to remote spec in 20.0.0 vs 19.0.0: "https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-ojet-cli-20.0.0.tgz" · package.json
mediumDependency Changed To Remote Vs PreviousdevDependencies.@oracle/oraclejet-webdriver changed to remote spec in 20.0.0 vs 19.0.0: "https://artifacthub-phx.oci.oraclecorp.com/ojet-dev-local/oracle-oraclejet-webdriver-20.0.0.tgz" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
20.0.0High risk802026-06-20
20.1.0High risk802026-06-20
20.1.2High risk802026-06-20
19.0.0Low risk02026-06-18

Block this in CI

PkgRadar gates @oracle/oraclejet-templates (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @oracle/[email protected]
Start free — 25 scans / moView full evidence