npm · registry.npmjs.org
@thevinci/web
Large Javascript Payload: 2819035 bytes
Why PkgRadar flagged 1.0.5
| Severity | Signal | Evidence |
|---|---|---|
| medium | Large Javascript Payload | 2819035 bytes · package/dist/assets/modelPrefsAutoSave-D5g55_mu.js |
| medium | Credential file access | matched ".ssh" · package/server/lib/git/service.js |
| medium | Large Javascript Payload | 18681413 bytes · package/dist/assets/vendor-.bun-B9l0ZNi2.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.5 | Review | 75 | 2026-05-27 |
1.0.4 | Review | 147 | 2026-05-25 |
1.0.3 | Review | 172 | 2026-05-24 |
1.0.2 | Review | 172 | 2026-05-24 |
1.0.1 | Review | 172 | 2026-05-24 |
1.0.0 | Review | 172 | 2026-05-24 |
Block this in CI
pkgradar gate --ecosystem npm @thevinci/[email protected]