PkgRadar

npm · registry.npmjs.org

mydex-i18n

Remote Dependency Spec: dependencies.@base-open/node-sdk="https://lf3-static.bytednsdoc.com/obj/eden-cn/jjjpceh7nulojvhj/node-sdk-0.0.7.tgz"

Why PkgRadar flagged 1.2.7

SeveritySignalEvidence
highRemote Dependency Specdependencies.@base-open/node-sdk="https://lf3-static.bytednsdoc.com/obj/eden-cn/jjjpceh7nulojvhj/node-sdk-0.0.7.tgz" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
1.2.7Review122026-05-26
1.2.8Review122026-05-26

Block this in CI

PkgRadar gates mydex-i18n (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence
mydex-i18n — npm security scan | PkgRadar