npm · registry.npmjs.org
@qwen-code/sdk
Obfuscation Density: high encoded/escaped-token density
Why PkgRadar flagged 0.1.8-preview.1
| Severity | Signal | Evidence |
|---|---|---|
| medium | Obfuscation Density | high encoded/escaped-token density · package/dist/cli/chunks/chunk-K5PGHDBN.js |
| medium | Obfuscation Density | high encoded/escaped-token density · package/dist/cli/chunks/web-fetch-V4TWMRQD.js |
| medium | Large Javascript Payload | 4381997 bytes · package/dist/cli/chunks/chunk-TM2PKATV.js |
| medium | Large Javascript Payload | 3394222 bytes · package/dist/cli/chunks/chunk-Z7LI2OXZ.js |
| medium | Large Javascript Payload | 6075627 bytes · package/dist/cli/cli.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.1.8-preview.1 | Review | 41 | 2026-05-26 |
0.1.7 | Review | 7 | 2026-05-26 |
0.1.8-preview.0 | Review | 7 | 2026-05-26 |
Block this in CI
pkgradar gate --ecosystem npm @qwen-code/[email protected]