PkgRadar

npm · registry.npmjs.org

@strada.sh/sdk

Remote Dependency Spec: devDependencies.better-auth="https://pkg.pr.new/better-auth@9489"

Why PkgRadar flagged 0.4.0

SeveritySignalEvidence
mediumRemote Dependency SpecdevDependencies.better-auth="https://pkg.pr.new/better-auth@9489" · package.json
mediumNew Remote Dependency Vs PreviousdevDependencies.better-auth added in 0.4.0 vs 0.3.0: "https://pkg.pr.new/better-auth@9489" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.4.0High risk1002026-06-10
0.5.0High risk922026-06-10
0.4.3High risk922026-06-10
0.4.1Review922026-05-29
0.4.2Review922026-05-29
0.3.0Low risk02026-05-27

Related campaigns

Block this in CI

PkgRadar gates @strada.sh/sdk (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @strada.sh/[email protected]
Start free — 25 scans / moView full evidence
@strada.sh/sdk — npm security scan | PkgRadar