PkgRadar

PyPI · pypi.org

dara-core

Credential File Packaged: dara/core/js_tooling/templates/.npmrc

Why PkgRadar flagged 1.28.5

SeveritySignalEvidence
highCredential File Packageddara/core/js_tooling/templates/.npmrc · dara/core/js_tooling/templates/.npmrc

Scanned versions

VersionVerdictScoreScanned (UTC)
1.28.5High risk202026-06-12
1.28.4High risk202026-06-12
1.28.3High risk202026-06-12
1.28.2High risk202026-06-08
1.28.1High risk202026-06-04
1.28.0High risk202026-06-01
1.27.1High risk202026-05-30

Block this in CI

PkgRadar gates dara-core (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi dara-core==1.28.5
Start free — 25 scans / moView full evidence