npm · registry.npmjs.org
@yancyyu/openhermit
Install-time lifecycle script: postinstall="node ./bin/postinstall.mjs"
Why PkgRadar flagged 1.6.14
| Severity | Signal | Evidence |
|---|---|---|
| high | New Lifecycle Script Vs Previous | postinstall added in 1.6.14 vs 1.6.13: "node ./bin/postinstall.mjs" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.6.14 | High risk | 45 | 2026-06-10 |
1.6.41 | Review | 3 | 2026-06-07 |
1.6.40 | Review | 3 | 2026-06-07 |
1.6.39 | Review | 3 | 2026-06-07 |
1.6.38 | Review | 2 | 2026-06-02 |
1.6.36 | Review | 2 | 2026-06-01 |
1.6.37 | Review | 2 | 2026-06-01 |
1.6.35 | Review | 2 | 2026-05-30 |
1.6.34 | Review | 2 | 2026-05-30 |
1.6.33 | Review | 2 | 2026-05-30 |
1.6.32 | Review | 5 | 2026-05-30 |
1.6.31 | Review | 2 | 2026-05-30 |
1.6.30 | Review | 2 | 2026-05-29 |
1.6.29 | Review | 19 | 2026-05-27 |
1.6.28 | Review | 27 | 2026-05-26 |
1.6.27 | Review | 27 | 2026-05-26 |
1.6.26 | Review | 27 | 2026-05-26 |
1.6.25 | Review | 27 | 2026-05-26 |
1.6.24 | Review | 27 | 2026-05-26 |
1.6.23 | Review | 27 | 2026-05-26 |
1.6.20 | Review | 27 | 2026-05-26 |
1.6.19 | Review | 27 | 2026-05-26 |
1.6.18 | Review | 27 | 2026-05-26 |
1.6.17 | Review | 27 | 2026-05-26 |
1.6.16 | Review | 27 | 2026-05-26 |
1.6.15 | Review | 27 | 2026-05-26 |
1.6.12 | Review | 23 | 2026-05-25 |
1.6.13 | Review | 23 | 2026-05-25 |
1.6.8 | Review | 46 | 2026-05-25 |
1.6.9 | Review | 46 | 2026-05-25 |
1.6.4 | Review | 44 | 2026-05-25 |
1.6.3 | Review | 60 | 2026-05-25 |
1.6.2 | Review | 60 | 2026-05-25 |
1.6.1 | Review | 60 | 2026-05-25 |
1.5.13 | Review | 60 | 2026-05-24 |
1.5.11 | Review | 60 | 2026-05-24 |
1.5.10 | Review | 60 | 2026-05-24 |
1.5.8 | Review | 60 | 2026-05-24 |
1.5.9 | Review | 60 | 2026-05-24 |
Campaign attribution
Block this in CI
pkgradar gate --ecosystem npm @yancyyu/[email protected]