npm · registry.npmjs.org
@secondlayer/cli
Js Split Join Obfuscation: Array-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis.
Why PkgRadar flagged 8.3.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Js Split Join Obfuscation | Array-of-single-tokens joined to form a string — used to obscure module names like require(["n","o","de",":","cr","yp","to"].join("")), defeating static require() analysis. · package/dist/cli.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
8.10.2 | Low risk | 0 | 2026-06-13 |
8.10.1 | Low risk | 0 | 2026-06-12 |
8.10.0 | Low risk | 0 | 2026-06-12 |
8.8.0 | Low risk | 0 | 2026-06-12 |
8.9.0 | Low risk | 0 | 2026-06-12 |
8.7.1 | Low risk | 0 | 2026-06-11 |
8.7.0 | Low risk | 0 | 2026-06-11 |
8.6.4 | Low risk | 0 | 2026-06-10 |
8.6.3 | Low risk | 0 | 2026-06-07 |
8.6.2 | Low risk | 0 | 2026-06-07 |
8.6.1 | Low risk | 0 | 2026-06-06 |
8.6.0 | Low risk | 0 | 2026-06-06 |
8.5.2 | Low risk | 0 | 2026-06-06 |
8.5.0 | Low risk | 0 | 2026-06-04 |
8.5.1 | Low risk | 0 | 2026-06-04 |
8.4.2 | Low risk | 0 | 2026-06-04 |
8.4.3 | Low risk | 0 | 2026-06-04 |
8.4.1 | Low risk | 0 | 2026-06-02 |
8.4.0 | Low risk | 0 | 2026-06-02 |
8.3.0 | Review | 20 | 2026-05-30 |
8.2.0 | Review | 20 | 2026-05-30 |
8.0.0 | Review | 28 | 2026-05-29 |
8.1.0 | Review | 28 | 2026-05-29 |
7.0.1 | Review | 28 | 2026-05-29 |
7.0.0 | Review | 28 | 2026-05-29 |
6.0.0 | Review | 28 | 2026-05-29 |
5.10.0 | Review | 28 | 2026-05-29 |
5.10.1 | Review | 28 | 2026-05-29 |
5.6.6 | Review | 8 | 2026-05-27 |
5.6.4 | Review | 12 | 2026-05-24 |
5.6.5 | Review | 12 | 2026-05-24 |
Block this in CI
pkgradar gate --ecosystem npm @secondlayer/[email protected]