npm · registry.npmjs.org
beecork
Remote Payload: matched "api.telegram.org/bot"
Why PkgRadar flagged 1.5.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "api.telegram.org/bot" · package/dist/cli/doctor.js |
| medium | Remote Payload | matched "api.telegram.org/bot" · package/dist/cli/setup.js |
| medium | Remote Payload | matched "api.telegram.org/bot" · package/dist/channels/telegram.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.5.0 | High risk | 51 | 2026-06-15 |
1.6.0 | High risk | 51 | 2026-06-15 |
1.7.0 | High risk | 51 | 2026-06-15 |
1.7.1 | High risk | 51 | 2026-06-15 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]