npm · registry.npmjs.org

@qispace/vue3-player

Large Javascript Payload: 2079757 bytes

Why PkgRadar flagged 0.4.49

Severity	Signal	Evidence
medium	Large Javascript Payload	2079757 bytes · package/dist/web-components/vue3-player.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.4.57`	Low risk	0	2026-06-12
`0.4.29`	Low risk	0	2026-06-12
`0.4.28`	Low risk	0	2026-06-12
`0.4.56`	Low risk	0	2026-06-01
`0.4.55`	Low risk	0	2026-06-01
`0.4.54`	Low risk	0	2026-05-29
`0.4.53`	Low risk	0	2026-05-29
`0.4.52`	Low risk	0	2026-05-29
`0.4.51`	Low risk	0	2026-05-28
`0.4.49`	Review	5	2026-05-28
`0.4.50`	Review	5	2026-05-28
`0.4.48`	Low risk	0	2026-05-27
`0.4.45`	Low risk	0	2026-05-27
`0.4.47`	Low risk	0	2026-05-27

Block this in CI

PkgRadar gates @qispace/vue3-player (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @qispace/[email protected]