npm · registry.npmjs.org
zywlgis
Credential file access: matched ".AZURE"
Why PkgRadar flagged 0.5.90-beta.54
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | matched ".AZURE" · package/release/libs/Cesium/Workers/chunk-VCOHJNKB.js |
| medium | Obfuscation Density | high encoded/escaped-token density · package/release/libs/Cesium/Workers/chunk-LYLRYC4L.js |
| medium | Remote Payload | matched "raw.githubusercontent.com" · package/release/libs/ZLMRTCClient.js |
| medium | Large Javascript Payload | 4654409 bytes · package/release/libs/Cesium/index.cjs |
| medium | Large Javascript Payload | 5841992 bytes · package/release/libs/Cesium/Cesium.js |
| medium | Large Javascript Payload | 3601294 bytes · package/release/libs/egm96_mhl.js |
| medium | Large Javascript Payload | 4600566 bytes · package/release/libs/Cesium/index.js |
| medium | Large Javascript Payload | 19680463 bytes · package/release/ZYWLGIS.es.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.5.90-beta.59 | Low risk | 0 | 2026-06-17 |
0.5.90-beta.58 | Low risk | 0 | 2026-06-16 |
0.5.90-beta.57 | Low risk | 0 | 2026-06-15 |
0.5.90-beta.56 | Low risk | 0 | 2026-06-15 |
0.5.90-beta.55 | Low risk | 0 | 2026-06-12 |
0.5.90 | Low risk | 0 | 2026-06-12 |
0.5.90-beta.54 | Review | 92 | 2026-05-25 |
0.5.90-beta.52 | Review | 92 | 2026-05-25 |
0.5.90-beta.53 | Review | 92 | 2026-05-25 |
Related campaigns
- zlb0430 — 3 releases, max score 122
Block this in CI
pkgradar gate --ecosystem npm [email protected]