npm · registry.npmjs.org

@s-tier-building-automation/stier-mcp-server

Remote Dependency Spec: dependencies.obix-js="github:Rise-Building-Technology/obix-js"

Why PkgRadar flagged 2.1.0

Severity	Signal	Evidence
medium	Remote Dependency Spec	dependencies.obix-js="github:Rise-Building-Technology/obix-js" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`2.1.0`	High risk	17	2026-06-20
`2.1.1`	High risk	17	2026-06-20
`2.2.0`	High risk	17	2026-06-20
`2.4.2`	High risk	29	2026-06-20

Block this in CI

PkgRadar gates @s-tier-building-automation/stier-mcp-server (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @s-tier-building-automation/[email protected]