PkgRadar

npm · registry.npmjs.org

@vtex/cli-plugin-content

Remote Dependency Spec: devDependencies.nodemon-notifier-cli="https://github.com/Slessi/nodemon-notifier-cli.git"

Why PkgRadar flagged 1.3.2

SeveritySignalEvidence
mediumRemote Dependency SpecdevDependencies.nodemon-notifier-cli="https://github.com/Slessi/nodemon-notifier-cli.git" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
1.3.2Review52026-06-11
1.6.0Review52026-06-11
1.7.0Review52026-06-11
1.7.1Review52026-05-25
1.7.2Review52026-05-25

Block this in CI

PkgRadar gates @vtex/cli-plugin-content (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @vtex/[email protected]
Start free — 25 scans / moView full evidence
@vtex/cli-plugin-content — npm security scan | PkgRadar