PkgRadar

npm · registry.npmjs.org

@vibe-lark/larkpal

Credential file access: matched "GOOGLE_APPLICATION_CREDENTIALS"

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.89Review352026-06-08
0.1.90Review352026-06-08
0.1.88Review352026-06-08
0.1.87Review352026-06-08
0.1.86Review242026-06-08
0.1.84Low risk02026-06-08
0.1.85Low risk02026-06-08
0.1.83Low risk02026-06-02
0.1.82Low risk02026-06-01
0.1.81Low risk02026-06-01
0.1.80Low risk02026-05-31
0.1.79Low risk02026-05-31
0.1.78Low risk02026-05-31
0.1.77Low risk02026-05-31
0.1.76Low risk02026-05-31
0.1.75Low risk02026-05-31
0.1.73Low risk02026-05-31
0.1.74Low risk02026-05-31
0.1.58Low risk02026-05-30
0.1.53Low risk02026-05-30
0.1.57Low risk02026-05-30
0.1.54Low risk02026-05-30
0.1.56Low risk02026-05-30
0.1.55Low risk02026-05-30
0.1.72Low risk02026-05-30
0.1.70Low risk02026-05-29
0.1.71Low risk02026-05-29
0.1.69Low risk02026-05-29
0.1.68Low risk02026-05-29
0.1.66Low risk02026-05-28
0.1.67Low risk02026-05-28

Block this in CI

PkgRadar gates @vibe-lark/larkpal (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @vibe-lark/[email protected]
Start free — 25 scans / moView full evidence