npm · registry.npmjs.org
kurobails
New Account With Lifecycle Hook: package first published 18 day(s) ago, 2 total version(s), has lifecycle hook
Why PkgRadar flagged 1.2.0
| Severity | Signal | Evidence |
|---|---|---|
| high | New Account With Lifecycle Hook | package first published 18 day(s) ago, 2 total version(s), has lifecycle hook · package.json |
| medium | Remote Dependency Spec | dependencies.libsignal="github:Badzz88/libsignal-node" · package.json |
| medium | Remote Dependency Spec | devDependencies.@adiwajshing/eslint-config="github:Badzz88/eslint-config" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.2.0 | High risk | 25 | 2026-06-10 |
1.3.6 | High risk | 45 | 2026-06-05 |
1.3.5 | High risk | 37 | 2026-06-04 |
1.3.4 | Review | 21 | 2026-06-03 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]