npm · registry.npmjs.org
codemem
Remote Payload: matched "cUrl\n\t\t"
Why PkgRadar flagged 0.32.2
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "cUrl\n\t\t" · package/dist/index.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.35.2 | Low risk | 0 | 2026-05-30 |
0.35.1 | Low risk | 0 | 2026-05-29 |
0.35.0 | Low risk | 0 | 2026-05-29 |
0.34.0 | Low risk | 0 | 2026-05-29 |
0.33.0 | Low risk | 0 | 2026-05-27 |
0.33.0-alpha.3 | Low risk | 0 | 2026-05-26 |
0.33.0-alpha.2 | Low risk | 0 | 2026-05-26 |
0.33.0-alpha.1 | Low risk | 0 | 2026-05-25 |
0.32.3 | Low risk | 0 | 2026-05-25 |
0.32.2 | Review | 12 | 2026-05-25 |
0.32.1 | Review | 12 | 2026-05-24 |
0.31.4 | Low risk | 0 | 2026-05-24 |
0.32.0 | Review | 12 | 2026-05-24 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]