npm · registry.npmjs.org
shikimori-baikeys
Install-time lifecycle script: preinstall="node ./engine-requirements.js"
Why PkgRadar flagged 1.0.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Install-time lifecycle script | preinstall="node ./engine-requirements.js" · package.json |
| high | Install Lifecycle Remote Or Exec | preinstall="node ./engine-requirements.js" · package.json |
| medium | Remote Dependency Spec | dependencies.libsignal="github:NaufalYupra/libsignal-node" · package.json |
| medium | Large Javascript Payload | 8472622 bytes · package/WAProto/index.js |
| medium | Remote Dependency Spec | devDependencies.@adiwajshing/eslint-config="github:adiwajshing/eslint-config" · package.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.0 | High risk | 65 | 2026-05-24 |
Related campaigns
- install_lifecycle_script:preinstall="node ./engine-requirements.js" — 25 releases, max score 141
- shikimori — 2 releases, max score 130
Block this in CI
pkgradar gate --ecosystem npm [email protected]