npm · registry.npmjs.org
biblio-react
Remote Dependency Spec: devDependencies.react-draggable="github:WiXSL/react-draggable"
Why PkgRadar flagged 3.0.0-alpha336-popup
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Dependency Spec | devDependencies.react-draggable="github:WiXSL/react-draggable" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
3.0.0-alpha336-popup | Review | 2 | 2026-06-16 |
3.0.0-alpha335-popup | Review | 2 | 2026-06-16 |
3.0.0-alpha334-popup | Review | 2 | 2026-06-08 |
3.0.0-alpha333-popup | Review | 2 | 2026-06-08 |
3.0.0-alpha332-popup | Review | 2 | 2026-06-04 |
3.0.0-alpha331-popup | Review | 2 | 2026-06-04 |
3.0.0-alpha329-popup | Review | 2 | 2026-06-04 |
3.0.0-alpha330-popup | Review | 2 | 2026-06-04 |
3.0.0-alpha328-popup | Review | 2 | 2026-06-03 |
3.0.0-alpha327-popup | Review | 2 | 2026-06-02 |
3.0.0-alpha326-popup | Review | 2 | 2026-06-02 |
3.0.0-alpha325-popup | Review | 2 | 2026-06-01 |
3.0.0-alpha323-popup | Review | 2 | 2026-05-26 |
3.0.0-alpha324-popup | Review | 2 | 2026-05-26 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]