PkgRadar

npm · registry.npmjs.org

@vemdev/cli

Obfuscation Density: high encoded/escaped-token density

Why PkgRadar flagged 0.1.93

SeveritySignalEvidence
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/chunk-DFSUNF7J.js
mediumRemote Payloadmatched "curl " · package/detect-and-install.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.93Review442026-05-25
0.1.94Review302026-05-25
0.1.90Review922026-05-24
0.1.88Review922026-05-24
0.1.89Review922026-05-24

Block this in CI

PkgRadar gates @vemdev/cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @vemdev/[email protected]
Start free — 25 scans / moView full evidence
@vemdev/cli — npm security scan | PkgRadar