npm · registry.npmjs.org

supply-chain-guard

Credential file access: matched ".npmrc"

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`5.2.32`	Review	10	2026-06-13
`5.2.31`	Review	10	2026-06-11
`5.2.30`	Review	10	2026-06-09
`5.2.29`	Review	10	2026-06-02
`5.2.28`	Review	10	2026-06-01
`5.2.27`	Review	12	2026-05-28
`5.2.25`	Review	16	2026-05-25
`5.2.26`	Review	16	2026-05-25
`5.2.24`	Review	148	2026-05-24
`5.2.23`	Review	148	2026-05-24
`5.2.22`	Review	148	2026-05-24
`5.2.20`	Review	148	2026-05-24
`5.2.21`	Review	148	2026-05-24

Block this in CI

PkgRadar gates supply-chain-guard (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]