npm · registry.npmjs.org
@zenith-cli/zenith
Install Lifecycle Remote Or Exec: postinstall="node scripts/check-sqlite.js && node scripts/check-kuzu.js && node scripts/link-workspace.js"
Why PkgRadar flagged 0.1.2-beta.1
| Severity | Signal | Evidence |
|---|---|---|
| high | Install Lifecycle Remote Or Exec | postinstall="node scripts/check-sqlite.js && node scripts/check-kuzu.js && node scripts/link-workspace.js" · package.json |
| medium | Remote Payload | matched "github.com/WiseLibs/better-sqlite3/releases/download" · package/scripts/check-sqlite.js |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/devops/messaging/rabbitmq/scripts/check-cluster.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/devops/networking/traefik/scripts/check-dashboard.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/devops/observability/grafana/scripts/check-dashboards.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/devops/observability/elk-stack/scripts/check-ilm.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/devops/observability/loki/scripts/check-streams.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/backend/csharp/aspnet-core/scripts/health-check.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/backend/csharp/scripts/health-check.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/backend/elixir/phoenix/scripts/health-check.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/backend/golang/echo/scripts/health-check.sh |
| medium | Remote Payload | matched "curl " · package/core/assets/default-skills/domain/technical/backend/golang/gin/scripts/health-check.sh |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.1.2-beta.1 | High risk | 117 | 2026-05-27 |
0.1.1-beta.1 | High risk | 117 | 2026-05-26 |
0.1.0-beta.1 | High risk | 117 | 2026-05-25 |
0.1.0-beta.2 | High risk | 117 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm @zenith-cli/[email protected]