PkgRadar

npm · registry.npmjs.org

kube-superlog

Install Lifecycle Repeated Payload: preinstall,postinstall="rm -f package-lock.json"

Why PkgRadar flagged 0.1.0

SeveritySignalEvidence
highInstall Lifecycle Repeated Payloadpreinstall,postinstall="rm -f package-lock.json" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.0High risk352026-06-09
0.1.1High risk352026-06-09
0.1.2High risk352026-06-09
0.1.3High risk352026-06-09

Block this in CI

PkgRadar gates kube-superlog (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence