Loading the latest scan…
npm · registry.npmjs.org
Shell Credential File Read, Credential file access, Suspicious Publish Context
Why PkgRadar flagged 0.7.0
| Severity | Signal | Evidence |
|---|---|---|
| high | Shell Credential File Read | — |
| medium | Suspicious Publish Context | — |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.7.0 | High risk | 60 | 2026-07-10 |
0.6.0 | High risk | 60 | 2026-07-09 |
0.4.3 | Review | 30 | 2026-07-07 |
0.5.0 | Review | 30 | 2026-07-07 |
0.4.2 | Review | 30 | 2026-07-05 |
0.4.0 | Review | 30 | 2026-07-05 |
0.4.1 | Review | 30 | 2026-07-05 |
Related campaigns
Block this in CI
pkgradar gate --ecosystem npm @femmefatalerror/[email protected]