PkgRadar

npm · registry.npmjs.org

aggroot

Obfuscation Density: high encoded/escaped-token density

Why PkgRadar flagged 1.7.0

SeveritySignalEvidence
mediumObfuscation Densityhigh encoded/escaped-token density · package/share/web/dist/assets/chunk-727SXJPM-D_6oOdqY.js
mediumObfuscation Densityhigh encoded/escaped-token density · package/share/web/dist/assets/flowDiagram-I6XJVG4X-Dxvbs0iy.js
mediumLarge Javascript Payload9753190 bytes · package/dist/index.cjs

Scanned versions

VersionVerdictScoreScanned (UTC)
1.7.0Review232026-05-27
1.7.1Review232026-05-27
1.6.6Review72026-05-27
1.6.7Review232026-05-27
1.6.2Review72026-05-26
1.6.1Review72026-05-26
1.6.0Review222026-05-25
1.5.9Review222026-05-25
1.5.8Review222026-05-25
1.5.7Review222026-05-25
1.5.6Review222026-05-25
1.5.5Review222026-05-25
1.5.4Review222026-05-25
1.5.2Review222026-05-25
1.5.3Review222026-05-25

Block this in CI

PkgRadar gates aggroot (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence