npm · registry.npmjs.org

js-bao-wss-client

Obfuscation Density: high encoded/escaped-token density

Why PkgRadar flagged 1.3.0-alpha.40

Severity	Signal	Evidence
medium	Obfuscation Density	high encoded/escaped-token density · package/dist/internal/y-indexeddb/package-lock.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`2.0.1`	Low risk	0	2026-06-05
`1.3.0-alpha.43`	Low risk	0	2026-06-05
`1.3.0-alpha.42`	Low risk	0	2026-06-02
`2.0.0`	Low risk	0	2026-06-02
`1.3.0-alpha.41`	Low risk	0	2026-06-01
`1.3.0-alpha.40`	Review	12	2026-05-26
`1.4.7`	Review	12	2026-05-26

Block this in CI

PkgRadar gates js-bao-wss-client (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]