npm · registry.npmjs.org
shaka-player
Remote Dependency Spec: devDependencies.eslint-config-google="github:google/eslint-config-google#3ae571a"
Why PkgRadar flagged 5.0.19
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Dependency Spec | devDependencies.eslint-config-google="github:google/eslint-config-google#3ae571a" · package.json |
| medium | Remote Dependency Spec | devDependencies.google-closure-library="github:joeyparrish/closure-library#74db0395" · package.json |
| medium | Remote Dependency Spec | devDependencies.jsdoc="github:joeyparrish/jsdoc#a1e61a4e" · package.json |
| medium | Remote Dependency Spec | devDependencies.karma="github:joeyparrish/karma#shaka-fixes" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
5.0.19 | Review | 9 | 2026-06-08 |
4.16.35 | Review | 9 | 2026-06-08 |
4.15.47 | Review | 9 | 2026-06-08 |
4.16.34 | Review | 9 | 2026-06-08 |
5.0.18 | Review | 9 | 2026-06-01 |
5.1.7 | Review | 9 | 2026-06-01 |
5.0.17 | Review | 32 | 2026-05-25 |
5.1.6 | Review | 42 | 2026-05-25 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]