PkgRadar

npm · registry.npmjs.org

@ripla/godd-mcp

Js Decode Then Exec: base64 / atob / fromCharCode decode paired with eval / new Function in the same file — canonical obfuscated-loader pattern.

Why PkgRadar flagged 1.0.4-canary.25

SeveritySignalEvidence
highJs Decode Then Execbase64 / atob / fromCharCode decode paired with eval / new Function in the same file — canonical obfuscated-loader pattern. · package/dist/godd.cjs
highJs Decode Then Execbase64 / atob / fromCharCode decode paired with eval / new Function in the same file — canonical obfuscated-loader pattern. · package/dist/godd.js
highJs Decode Then Execbase64 / atob / fromCharCode decode paired with eval / new Function in the same file — canonical obfuscated-loader pattern. · package/dist/index.js
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/godd.cjs
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/godd.js
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/index.js
mediumObfuscation Densityhigh encoded/escaped-token density · package/notes-app/package-lock.json
mediumObfuscation Densityhigh encoded/escaped-token density · package/notes-app/pnpm-lock.yaml

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.4-canary.31Low risk02026-06-07
1.0.4-canary.30Low risk02026-06-04
1.0.4-canary.29Low risk02026-06-02
1.0.4-canary.28Low risk02026-06-02
1.0.4-canary.27Low risk02026-06-02
1.0.4-canary.26Low risk02026-06-02
1.0.4-canary.25Review932026-05-28
1.0.4-canary.24Review1002026-05-25
1.0.4-canary.23Review1482026-05-25
1.0.4-canary.22Review1482026-05-25
1.0.4-canary.21Review1482026-05-25
1.0.4-canary.19Review1482026-05-25
1.0.4-canary.20Review1482026-05-25

Block this in CI

PkgRadar gates @ripla/godd-mcp (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @ripla/[email protected]
Start free — 25 scans / moView full evidence