Package evidence

@economist/[email protected]

no findings

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Weekly downloads: 52
Versions published: 3
First published: May 2016
Publisher: economist-org-bot

Recommended action

Looks clean — keep monitoring

No high-signal indicators in the stored static report. PkgRadar will re-check on the next ingest pass.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@economist/[email protected]"],"fail_on":"review"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@economist/[email protected]"],"fail_on":"review"}'

Publishereconomist-org-bot

Artifact bytes9,209

Previous versionnone

Published2016-05-06T11:30:53.786Z

SHA-256bdb55bff74026b15f4474f5b6657a919b0504c12b8120ac763d95495fb74b8fa

Why flagged

What the scanner saw

No high-signal static finding in the saved report.

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

low

5d agoLast checked

lowRisk

0Score

1.0.0Version

Status history (1 event)

new → available5d ago · risk low · score 0 · status changed

Evidence

Static findings

No findings stored for this release.

Manifest

Package metadata

Scripts35

accessnpm-run-all --parallel access:*
access:publicnpm access public $npm_package_name || true
access:sudonpm access grant read-write economist:read-write-all $npm_package_name || true
buildnpm-run-all --parallel build:*
build:csscp $npm_package_directories_src/*.css $npm_package_directories_lib
build:jsbabel $npm_package_directories_src -d $npm_package_directories_lib --source-maps inline
docnpm-run-all --parallel doc:*
doc:assetsnpm-assets $npm_package_directories_site
doc:csspostcss $npm_package_config_doc_css_options -o $npm_package_directories_site/bundle.css $npm_package_directories_src/example.css
doc:htmlhbs -D package.json -H @economist/doc-pack -o $npm_package_directories_site $npm_package_config_doc_html_files
doc:jsbrowserify $npm_package_config_doc_js_options $npm_package_directories_test/*.js -o $npm_package_directories_site/bundle.js
lintnpm-run-all --parallel lint:*
lint:cssstylelint $npm_package_directories_src/*.css
lint:jseslint --ignore-path .gitignore .
pagesgit-directory-deploy --directory $npm_package_directories_site --branch gh-pages
postpublishnpm run access
posttestlcov-result-merger 'coverage/**/lcov.info' | coveralls; true
prebuild:cssmkdir -p $npm_package_directories_lib
predocmkdir -p $npm_package_directories_site
prepagesnpm run doc
prepublishnpm run build
pretestnpm run lint && npm run doc
prewatch:docnpm run predoc
prewatch:servewhile [ ! -f site/index.html ]; do sleep 1; done
provisionprovision-react-component
semantic-releasesemantic-release pre || exit 0; npm publish && semantic-release post
startnpm run watch
testkarma start
watchnpm-run-all --parallel watch:*
watch:docnpm-run-all --parallel watch:doc:*
…and 5 more.

Dependencies2

lodash.uniqueid^4.0.0
react^0.14.8