npm · registry.npmjs.org
arqera
Remote Payload: matched "curl "
Why PkgRadar flagged 1.0.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · package/deploy/cloudflare/apply-dns.sh |
| medium | Remote Payload | matched "curl " · package/.external/arqera-legacy/backend/cleanup_tickets.sh |
| medium | Remote Payload | matched "curl " · package/backend/cleanup_tickets.sh |
| medium | Remote Payload | matched "curl " · package/.external/arqera-legacy/backend/debug_auth.sh |
| medium | Remote Payload | matched "curl " · package/backend/debug_auth.sh |
| medium | Remote Payload | matched "curl " · package/infrastructure/docker/twin-runner/entrypoint.sh |
| medium | Remote Payload | matched "curl " · package/.external/arqera-legacy/backend/test_done_only.sh |
| medium | Remote Payload | matched "curl " · package/backend/test_done_only.sh |
| medium | Remote Payload | matched "curl " · package/.external/arqera-legacy/backend/test_done_transition.sh |
| medium | Remote Payload | matched "curl " · package/backend/test_done_transition.sh |
| medium | Remote Payload | matched "curl " · package/.external/arqera-legacy/backend/test_handoffs.sh |
| medium | Remote Payload | matched "curl " · package/backend/test_handoffs.sh |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.0 | Review | 165 | 2026-05-28 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]