PkgRadar

npm · registry.npmjs.org

effect-analyzer

Obfuscation Density: high encoded/escaped-token density

Why PkgRadar flagged 0.1.13

SeveritySignalEvidence
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/index.cjs
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/cli.js
mediumObfuscation Densityhigh encoded/escaped-token density · package/dist/index.js
mediumRemote Payloadmatched "cUrl " · package/dist/lsp/server.js

Scanned versions

VersionVerdictScoreScanned (UTC)
0.3.1Low risk02026-06-04
0.3.0Low risk02026-05-28
0.1.13Review122026-05-24
0.2.0Review122026-05-24

Block this in CI

PkgRadar gates effect-analyzer (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence