PkgRadar

npm · registry.npmjs.org

9remote-beta

Install Lifecycle Suppresses Failure, Credential file access, Install-time lifecycle script

Why PkgRadar flagged 2.0.53

SeveritySignalEvidence
highInstall Lifecycle Suppresses Failure

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
2.0.53High risk302026-07-02
2.0.52High risk302026-07-02
2.0.51High risk302026-07-02
2.0.50High risk302026-07-02
2.0.48High risk302026-07-02
2.0.49High risk302026-07-02
2.0.46High risk302026-07-02
2.0.47High risk302026-07-02
2.0.44High risk302026-07-02
2.0.43High risk302026-07-02
2.0.42High risk302026-07-02
2.0.41High risk302026-07-02
2.0.40High risk302026-07-02
2.0.39High risk302026-07-02
2.0.37High risk302026-07-02
2.0.35High risk302026-07-02
2.0.36High risk302026-07-02
2.0.34High risk302026-07-02
2.0.32High risk302026-07-02
2.0.31High risk302026-07-02

Block this in CI

PkgRadar gates 9remote-beta (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
9remote-beta — npm security scan | PkgRadar