PkgRadar

npm · registry.npmjs.org

geek-chat

Remote Dependency Spec: dependencies.react-komposer="https://github.com/bhavishhak/react-komposer.git"

Why PkgRadar flagged 0.1.5

SeveritySignalEvidence
highRemote Dependency Specdependencies.react-komposer="https://github.com/bhavishhak/react-komposer.git" · package.json
highNew Remote Dependency Vs Previousdependencies.react-komposer added in 0.1.5 vs 0.1.4: "https://github.com/bhavishhak/react-komposer.git" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.5High risk242026-06-05
0.1.6High risk122026-06-05

Related campaigns

Block this in CI

PkgRadar gates geek-chat (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence