npm · registry.npmjs.org

brsh

Remote Dependency Spec: dependencies.ansi_up="git+https://github.com/eliotstocker/ansi_up.git"

Why PkgRadar flagged 2.5.5

Severity	Signal	Evidence
medium	Remote Dependency Spec	dependencies.ansi_up="git+https://github.com/eliotstocker/ansi_up.git" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`2.5.5`	Review	4	2026-05-25
`2.5.4`	Review	4	2026-05-25
`2.5.3`	Review	4	2026-05-25
`2.5.2`	Review	4	2026-05-25
`2.5.0`	Review	4	2026-05-25
`2.5.1`	Review	4	2026-05-25
`2.4.0`	Review	66	2026-05-24
`2.4.1`	Review	66	2026-05-24

Block this in CI

PkgRadar gates brsh (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]