npm · registry.npmjs.org

igv_feifei

Remote Dependency Spec: devDependencies.circular-view="github:igvteam/circular-view#v0.2.4"

Why PkgRadar flagged 3.0.8-dev1.4.5

Severity	Signal	Evidence
medium	Remote Dependency Spec	devDependencies.circular-view="github:igvteam/circular-view#v0.2.4" · package.json
medium	Remote Dependency Spec	devDependencies.hdf5-indexed-reader="github:jrobinso/hdf5-indexed-reader#v0.5.6" · package.json
medium	Remote Dependency Spec	devDependencies.igv-utils="github:igvteam/igv-utils#v1.5.9" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`3.0.8-dev1.4.5`	Review	12	2026-06-11
`3.0.8-dev1.4.6`	Review	12	2026-06-11
`3.0.8-dev1.4.7`	Review	12	2026-06-11
`3.0.8-dev1.4.8`	Review	12	2026-06-11

Block this in CI

PkgRadar gates igv_feifei (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]