npm · registry.npmjs.org
novu
Webhook Exfil Endpoint: matched "ngrok.app"
Why PkgRadar flagged 2.8.1-rc.13
| Severity | Signal | Evidence |
|---|---|---|
| high | Webhook Exfil Endpoint | matched "ngrok.app" · package/dist/src/index.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
2.8.1-rc.13 | High risk | 22 | 2026-06-13 |
2.14.0 | High risk | 22 | 2026-06-12 |
2.13.0 | High risk | 22 | 2026-06-12 |
2.12.0 | High risk | 22 | 2026-06-10 |
2.12.0-rc.0 | High risk | 22 | 2026-06-10 |
2.11.0 | High risk | 22 | 2026-06-10 |
2.8.1-rc.12 | High risk | 22 | 2026-06-10 |
2.8.1-rc.11 | High risk | 22 | 2026-06-10 |
2.8.1-rc.10 | High risk | 20 | 2026-06-10 |
2.8.1-rc.9 | High risk | 20 | 2026-06-10 |
2.8.1-rc.8 | High risk | 20 | 2026-06-10 |
2.10.0 | High risk | 22 | 2026-06-10 |
2.10.0-rc.3 | High risk | 22 | 2026-06-10 |
2.10.0-rc.2 | High risk | 22 | 2026-06-10 |
2.10.0-rc.1 | High risk | 22 | 2026-06-10 |
2.10.0-rc.0 | High risk | 22 | 2026-06-10 |
2.9.2 | High risk | 22 | 2026-06-10 |
2.9.1 | High risk | 22 | 2026-06-10 |
2.9.0 | High risk | 22 | 2026-06-10 |
2.9.0-beta.1 | High risk | 22 | 2026-06-10 |
2.9.0-beta.0 | High risk | 22 | 2026-06-10 |
2.8.1-rc.16 | High risk | 22 | 2026-06-10 |
2.8.1-rc.15 | High risk | 22 | 2026-06-10 |
2.8.1-rc.14 | High risk | 22 | 2026-06-10 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]