npm · registry.npmjs.org
@pencil-agent/nano-pencil
Remote Payload: matched "curl "
Why PkgRadar flagged 2.0.3
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · package/dist/extensions/builtin/browser/src/browser_harness/admin.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
2.0.3 | Review | 18 | 2026-06-13 |
2.0.2 | Review | 18 | 2026-06-13 |
2.0.1 | Review | 18 | 2026-06-12 |
2.0.0 | Review | 18 | 2026-06-12 |
2.0.0-beta.10 | Review | 18 | 2026-06-12 |
2.0.0-beta.9 | Review | 18 | 2026-06-12 |
2.0.0-beta.8 | Review | 27 | 2026-06-11 |
1.11.40 | Review | 76 | 2026-06-11 |
2.0.0-beta.7 | Review | 27 | 2026-06-11 |
1.11.39 | Review | 76 | 2026-06-11 |
2.0.0-beta.3 | Review | 27 | 2026-06-11 |
1.11.38 | Review | 76 | 2026-06-11 |
2.0.0-beta.4 | Review | 27 | 2026-06-05 |
2.0.0-beta.6 | Review | 27 | 2026-06-05 |
2.0.0-beta.1 | Review | 22 | 2026-06-05 |
2.0.0-beta.0 | Review | 22 | 2026-06-05 |
1.14.6 | Review | 32 | 2026-05-28 |
1.14.5 | Review | 32 | 2026-05-28 |
1.14.4 | Review | 42 | 2026-05-27 |
1.14.3 | Review | 42 | 2026-05-27 |
1.14.1 | Review | 47 | 2026-05-26 |
1.14.2 | Review | 42 | 2026-05-26 |
Block this in CI
pkgradar gate --ecosystem npm @pencil-agent/[email protected]