PkgRadar

npm · registry.npmjs.org

utilitas

Remote Dependency Spec: devDependencies.@mozilla/readability="github:mozilla/readability"

Why PkgRadar flagged 2001.1.154

SeveritySignalEvidence
mediumRemote Dependency SpecdevDependencies.@mozilla/readability="github:mozilla/readability" · package.json
mediumRemote Dependency SpecdevDependencies.url="github:Leask/node-url" · package.json
highRemote Dependency SpecdevDependencies.xlsx="https://cdn.sheetjs.com/xlsx-0.20.1/xlsx-0.20.1.tgz" · package.json

Scanned versions

VersionVerdictScoreScanned (UTC)
2001.1.154Review72026-05-30
2001.1.155Review72026-05-30

Block this in CI

PkgRadar gates utilitas (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence
utilitas — npm security scan | PkgRadar