PkgRadar

npm · registry.npmjs.org

fury_frontend-andes-ui

DNS / OAST exfiltration, New Account With Lifecycle Hook, Install-time lifecycle script +1 more

Why PkgRadar flagged 99.9.5

SeveritySignalEvidence
highDNS / OAST exfiltration
highNew Account With Lifecycle Hook
mediumSuspicious Publish Context

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
99.9.5High risk452026-07-10
99.9.6High risk322026-07-10

Block this in CI

PkgRadar gates fury_frontend-andes-ui (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
fury_frontend-andes-ui — npm malware advisory | PkgRadar