PkgRadar

npm · registry.npmjs.org

nemar-cli

Install-time lifecycle script: postinstall="bun scripts/postinstall-check.mjs"

Why PkgRadar flagged 0.8.48-dev.1329

SeveritySignalEvidence
highNew Lifecycle Script Vs Previouspostinstall added in 0.8.48-dev.1329 vs 0.8.48-dev.1326: "bun scripts/postinstall-check.mjs" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
0.8.48-dev.1329High risk452026-06-06
0.8.48-PR709.dc1b41fHigh risk452026-06-06
0.8.48-dev.1326Low risk02026-06-05
0.8.48-PR708.00e8e70Low risk02026-06-05
0.8.48-PR708.4ab2f24Low risk02026-06-05
0.8.48-PR707.8418acaLow risk02026-06-05
0.8.48-dev.1321Low risk02026-06-05
0.8.48-PR706.e537242Low risk02026-06-05
0.8.48-dev.1314Low risk02026-06-05
0.8.47-PR700.6a16f97Low risk02026-06-05
0.8.47-PR699.b902a8eLow risk02026-06-05
0.8.47-PR700.6affd97Low risk02026-06-05
0.8.47-PR699.0314cc1Low risk02026-06-05
0.8.47Low risk02026-06-05
0.8.48-dev.1307Low risk02026-06-05
0.8.47-dev.1305Low risk02026-06-05
0.8.47-PR697.6704ce7Low risk02026-06-05
0.8.47-PR697.de54275Low risk02026-06-04
0.8.47-dev.1301Low risk02026-06-03
0.8.47-PR693.cd29dadLow risk02026-06-03
0.8.47-dev.1298Low risk02026-06-03
0.8.46-PR692.156c9d8Low risk02026-06-03
0.8.46-PR692.106db77Low risk02026-06-03
0.8.46-PR692.f7fb083Low risk02026-06-03
0.8.46-PR692.62d2dbeLow risk02026-06-03
0.8.46-PR692.943ae54Low risk02026-06-03
0.8.46Low risk02026-06-03
0.8.47-dev.1291Low risk02026-06-03
0.8.46-dev.1286Low risk02026-06-03
0.8.46-dev.1288Low risk02026-06-03
0.8.46-PR689.ba99cdbLow risk02026-06-03
0.8.46-dev.1282Low risk02026-06-03
0.8.46-PR688.1190904Low risk02026-06-03
0.8.46-PR688.f2f606bLow risk02026-06-03
0.8.46-PR688.725db89Low risk02026-06-03
0.8.46-dev.1277Low risk02026-06-03
0.8.45Low risk02026-06-03
0.8.45-dev.1275Low risk02026-06-03
0.8.45-PR686.40bf2d9Low risk02026-06-03
0.8.45-PR686.99e8f93Low risk02026-06-03
0.8.45-dev.1270Low risk02026-06-03
0.8.44Low risk02026-06-03
0.8.44-PR681.3f06a8cLow risk02026-06-03
0.8.44-dev.1268Low risk02026-06-03
0.8.44-PR681.67bf88dLow risk02026-06-03
0.8.43Low risk02026-06-02
0.8.44-dev.1264Low risk02026-06-02
0.8.43-PR678.278f311Low risk02026-06-02
0.8.43-dev.1259Low risk02026-06-02
0.8.43-dev.1251Low risk02026-06-02
0.8.42Low risk02026-06-02
0.8.41-dev.1240Low risk02026-06-02
0.8.41-dev.1241Low risk02026-06-02
0.8.41-PR671.afb855eLow risk02026-06-02
0.8.41-PR671.4b9d86eLow risk02026-06-02
0.8.41-dev.1234Low risk02026-06-02
0.8.41-PR665.ffb5b9bLow risk02026-06-02
0.8.40-PR667.6a5c98eLow risk02026-06-01
0.8.40-dev.1232Low risk02026-06-01
0.8.40-dev.1228Low risk02026-06-01
0.8.40-PR667.a5a294dLow risk02026-06-01
0.8.40-PR667.f2235eaLow risk02026-06-01
0.8.40-PR667.c9faf34Low risk02026-06-01
0.8.40-PR665.1affa2dLow risk02026-05-30
0.8.38-PR665.ce51b61Low risk02026-05-30
0.8.38-PR664.83f00adLow risk02026-05-30
0.8.40-dev.1216Low risk02026-05-30
0.8.38-PR663.6f490cdLow risk02026-05-30
0.8.38-PR663.0f7a184Low risk02026-05-30
0.8.38-PR661.3145b7aLow risk02026-05-30
0.8.38-PR659.371a572Low risk02026-05-29
0.8.38-PR659.16570c6Low risk02026-05-29
0.8.38-PR654.6ea467cLow risk02026-05-29
0.8.39Low risk02026-05-28
0.8.40-dev.1195Low risk02026-05-28
0.8.39-dev.1189Low risk02026-05-27
0.8.38Low risk02026-05-27
0.8.37-dev.1176Low risk02026-05-27
0.8.36Low risk02026-05-27

Block this in CI

PkgRadar gates nemar-cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence