npm · registry.npmjs.org
react-native-gesture-handler
Remote Dependency Spec: dependencies.hammerjs="https://github.com/naver/hammer.js.git"
Why PkgRadar flagged 1.5.6
| Severity | Signal | Evidence |
|---|---|---|
| high | Remote Dependency Spec | dependencies.hammerjs="https://github.com/naver/hammer.js.git" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
3.1.0-nightly-20260610-96dfc0099 | Low risk | 0 | 2026-06-10 |
1.6.0 | Low risk | 0 | 2026-06-10 |
3.0.1 | Low risk | 0 | 2026-06-10 |
1.5.6 | Review | 3 | 2026-06-10 |
1.5.5 | Review | 3 | 2026-06-10 |
3.1.0-nightly-20260609-6ba9d63d4 | Low risk | 0 | 2026-06-09 |
3.1.0-nightly-20260608-9a9f8b41e | Low risk | 0 | 2026-06-08 |
3.1.0-nightly-20260604-183f348f8 | Low risk | 0 | 2026-06-04 |
3.1.0-nightly-20260603-45e6ac8a0 | Low risk | 0 | 2026-06-03 |
3.1.0-nightly-20260601-4f4f63e1a | Low risk | 0 | 2026-06-02 |
3.1.0-nightly-20260528-548f2c8c3 | Low risk | 0 | 2026-05-29 |
3.0.0 | Low risk | 0 | 2026-05-28 |
3.0.0-nightly-20260527-5a9551ab7 | Low risk | 0 | 2026-05-28 |
3.0.0-nightly-20260526-117087e3d | Low risk | 0 | 2026-05-27 |
3.0.0-nightly-20260522-46a2bde7f | Low risk | 0 | 2026-05-27 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]