npm · registry.npmjs.org
rezo
Known Indicator Filename: package/dist/stealth/stealth.js
Why PkgRadar flagged 1.0.136
| Severity | Signal | Evidence |
|---|---|---|
| high | Known Indicator Filename | package/dist/stealth/stealth.js · package/dist/stealth/stealth.js |
| medium | Remote Payload | matched "curl " · package/dist/adapters/curl.cjs |
| medium | Remote Payload | matched "curl " · package/dist/utils/http-config.cjs |
| medium | Remote Payload | matched "curl " · package/dist/adapters/curl.js |
| medium | Remote Payload | matched "curl " · package/dist/utils/http-config.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.136 | High risk | 65 | 2026-06-10 |
1.0.135 | High risk | 65 | 2026-06-10 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]