npm · registry.npmjs.org
nodeskini
Remote Dependency Spec: dependencies.@hop/hiphop="https://www-sop.inria.fr/members/Manuel.Serrano/software/npmx/hiphop-unstable.tgz"
Why PkgRadar flagged 1.0.7
| Severity | Signal | Evidence |
|---|---|---|
| high | Remote Dependency Spec | dependencies.@hop/hiphop="https://www-sop.inria.fr/members/Manuel.Serrano/software/npmx/hiphop-unstable.tgz" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.7 | High risk | 36 | 2026-06-10 |
1.0.9 | High risk | 36 | 2026-06-10 |
Related campaigns
- 26eb1217e2758ff38e09eb48e606fa6c56bcea6052741ff78f43ca8cb7c39026 — 2 releases, max score 24
- https://www-sop.inria.fr/members/Manuel.Serrano/software/npmx/hiphop-unstable.tgz — 2 releases, max score 24
Block this in CI
pkgradar gate --ecosystem npm [email protected]