npm · registry.npmjs.org
google-closure-compiler
DNS / OAST exfiltration: matched "dns.lookup"
Why PkgRadar flagged 20260520.0.0
| Severity | Signal | Evidence |
|---|---|---|
| high | DNS / OAST exfiltration | matched "dns.lookup" · package/contrib/nodejs/dns.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
20260614.0.0 | Low risk | 0 | 2026-06-16 |
20260610.0.0 | Low risk | 0 | 2026-06-12 |
20260609.0.0 | Low risk | 0 | 2026-06-11 |
20260608.0.0 | Low risk | 0 | 2026-06-10 |
20260607.0.0 | Low risk | 0 | 2026-06-09 |
20260602.0.0 | Low risk | 0 | 2026-06-04 |
20260531.0.0 | Low risk | 0 | 2026-06-03 |
20260527.0.0 | Low risk | 0 | 2026-05-29 |
20260526.0.0 | Low risk | 0 | 2026-05-28 |
20260520.0.0 | Review | 9 | 2026-05-27 |
20260525.0.0 | Review | 9 | 2026-05-27 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]