npm · registry.npmjs.org
niyigaba_emmellien_guillaume
Credential File Packaged: package/backend-project/.env
Why PkgRadar flagged 1.0.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential File Packaged | package/backend-project/.env · package/backend-project/.env |
| medium | Obfuscation Density | high encoded/escaped-token density · package/backend-project/node_modules/is-property/is-property.js |
| medium | Obfuscation Density | high encoded/escaped-token density · package/backend-project/node_modules/iconv-lite/encodings/sbcs-data-generated.js |
| medium | Obfuscation Density | high encoded/escaped-token density · package/backend-project/node_modules/.package-lock.json |
| medium | Obfuscation Density | high encoded/escaped-token density · package/backend-project/package-lock.json |
| medium | Obfuscation Density | high encoded/escaped-token density · package/frontend-project/package-lock.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.0 | Review | 48 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]