npm · registry.npmjs.org
@vellumai/plugin-api
Suspicious Publish Context: {"package_age_days":1,"publisher":"devops-vellum","burst_same_day":2,"burst_week":2,"lure":null,"version_anomaly":false}
Why PkgRadar flagged 0.8.11-dev.202606120012.5656fc7
| Severity | Signal | Evidence |
|---|---|---|
| medium | Suspicious Publish Context | {"package_age_days":1,"publisher":"devops-vellum","burst_same_day":2,"burst_week":2,"lure":null,"version_anomaly":false} |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.8.11-dev.202606120012.5656fc7 | Review | 10 | 2026-06-12 |
0.8.11-dev.202606112338.1c15e19 | Review | 10 | 2026-06-11 |
0.8.11-dev.202606112241.9ae2fdc | Review | 10 | 2026-06-11 |
0.8.11-dev.202606112147.04177ac | Review | 10 | 2026-06-11 |
0.8.11 | Review | 10 | 2026-06-11 |
0.8.11-dev.202606112057.e4bc22e | Review | 10 | 2026-06-11 |
0.8.10-dev.202606111724.d4e5462 | Review | 10 | 2026-06-11 |
0.8.10-dev.202606111910.ead7030 | Review | 10 | 2026-06-11 |
0.8.10-dev.202606111519.39ad418 | Review | 10 | 2026-06-11 |
0.8.11-staging.1 | Review | 10 | 2026-06-11 |
0.8.10-dev.202606111334.d8a7740 | Low risk | 0 | 2026-06-11 |
0.8.10-dev.202606111255.73ec993 | Low risk | 0 | 2026-06-11 |
Block this in CI
pkgradar gate --ecosystem npm @vellumai/[email protected]