PkgRadar

npm · registry.npmjs.org

get-uri

Remote Dependency Spec: devDependencies.ftpd="https://files-jg1s1zt9l.n8.io/ftpd-v0.2.14.tgz"

Why PkgRadar flagged 6.0.5

SeveritySignalEvidence
mediumRemote Dependency SpecdevDependencies.ftpd="https://files-jg1s1zt9l.n8.io/ftpd-v0.2.14.tgz" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
6.0.5Review42026-06-08
7.0.0Low risk02026-06-08
8.0.0Low risk02026-06-08
8.0.1Low risk02026-06-08

Block this in CI

PkgRadar gates get-uri (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence