npm · registry.npmjs.org

rpc-express-toolkit

Remote Dependency Spec: dependencies.rpc-toolkit-js-client="https://github.com/n-car/rpc-toolkit-js-client/archive/refs/tags/v1.1.0.tar.gz"

Why PkgRadar flagged 4.3.4

Severity	Signal	Evidence
high	Remote Dependency Spec	dependencies.rpc-toolkit-js-client="https://github.com/n-car/rpc-toolkit-js-client/archive/refs/tags/v1.1.0.tar.gz" · package.json

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`4.3.5`	Low risk	0	2026-06-11
`4.3.4`	High risk	8	2026-06-11
`4.3.3`	High risk	8	2026-06-10
`4.2.0`	Low risk	0	2026-06-10
`4.2.1`	Low risk	0	2026-06-10
`4.1.0`	Low risk	0	2026-06-10
`4.3.2`	High risk	24	2026-06-10

Block this in CI

PkgRadar gates rpc-express-toolkit (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]