npm · registry.npmjs.org

safe-settings-bootstrap

Credential file access: matched "GITHUB_TOKEN"

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.0.66-build-renovate-major-11-octokit-monorepo-73335b4fa6fa76a40d942748bde7b82ce0a99e1e-1`	Review	1	2026-05-29
`0.0.66-build-renovate-major-11-octokit-monorepo-3124809749461f9948ed1e5a2b683c40dce43da7-1`	Review	1	2026-05-29

Block this in CI

PkgRadar gates safe-settings-bootstrap (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm safe-settings-bootstrap@0.0.66-build-renovate-major-11-octokit-monorepo-73335b4fa6fa76a40d942748bde7b82ce0a99e1e-1