npm · registry.npmjs.org

@zoom/cobrowsesdk

Webhook Exfil Endpoint: matched "ngrok.app"

Why PkgRadar flagged 3.5.0

Severity	Signal	Evidence
high	Webhook Exfil Endpoint	matched "ngrok.app" · package/esm/sdk-channel.js
high	Webhook Exfil Endpoint	matched "ngrok.app" · package/esm/sdk-controller.js
high	Webhook Exfil Endpoint	matched "ngrok.app" · package/esm/sdk-core.js
high	Webhook Exfil Endpoint	matched "ngrok.app" · package/esm/sdk-portal-customer.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`3.5.0`	High risk	35	2026-06-08
`3.1.3`	High risk	35	2026-06-08
`3.4.1`	High risk	35	2026-06-08

Block this in CI

PkgRadar gates @zoom/cobrowsesdk (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @zoom/[email protected]