PkgRadar

npm · registry.npmjs.org

tme-xca-react

no static findings

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.1-securityHigh risk02026-07-14
3.0.0High risk152026-06-26

Block this in CI

PkgRadar gates tme-xca-react (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
tme-xca-react — npm malware advisory | PkgRadar