npm · registry.npmjs.org
khyz-baileys
Remote Dependency Spec: dependencies.libsignal="github:tenka-san/libsignal-node"
Why PkgRadar flagged 2.3.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Dependency Spec | dependencies.libsignal="github:tenka-san/libsignal-node" · package.json |
| medium | New Account With Lifecycle Hook | package first published 15 day(s) ago, 7 total version(s), has lifecycle hook · package.json |
| medium | Remote Dependency Spec | devDependencies.@adiwajshing/eslint-config="github:adiwajshing/eslint-config" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
2.3.0 | High risk | 25 | 2026-06-11 |
2.0.2 | High risk | 25 | 2026-06-10 |
2.0.3 | High risk | 25 | 2026-06-10 |
2.0.0 | High risk | 25 | 2026-06-10 |
2.1.0 | High risk | 25 | 2026-06-10 |
2.0.4 | High risk | 25 | 2026-06-10 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]