PkgRadar

npm · registry.npmjs.org

@r2wa-org/eden

Remote Dependency Spec: dependencies.xlsx="https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz"

Why PkgRadar flagged 0.0.110

SeveritySignalEvidence
highRemote Dependency Specdependencies.xlsx="https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.110High risk122026-06-10
0.0.104High risk122026-06-10
0.0.103High risk122026-06-10
0.0.102High risk122026-06-10
0.0.101High risk122026-06-10
0.0.100High risk122026-06-10
0.0.99Review122026-05-31
0.0.97Review122026-05-30
0.0.91Review122026-05-29
0.0.93Review122026-05-29

Block this in CI

PkgRadar gates @r2wa-org/eden (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @r2wa-org/[email protected]
Start free — 25 scans / moView full evidence
@r2wa-org/eden — npm security scan | PkgRadar