Package evidence

@goodgamestudios/[email protected]

no findings

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Versions published: 5
First published: Mar 2026
Publisher: tschrader-ggs

Recommended action

Looks clean — keep monitoring

No high-signal indicators in the stored static report. PkgRadar will re-check on the next ingest pass.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@goodgamestudios/[email protected]"],"fail_on":"review"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@goodgamestudios/[email protected]"],"fail_on":"review"}'

Publishertschrader-ggs

Artifact bytes91,975

Previous version0.2.0-qa.1

Published2026-06-08T08:46:29.144Z

SHA-256e60ae81369f5ddc341dcc516ead1f5dde45805db2b58e5cdf8fedbb2dc29ed98

Why flagged

What the scanner saw

No high-signal static finding in the saved report.

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

low

19h agoLast checked

lowRisk

0Score

0.2.0-qa.2Version

Status history (1 event)

new → available19h ago · risk low · score 0 · status changed

Evidence

Static findings

No findings stored for this release.

Manifest

Package metadata

Scripts19

GO-LIVEnpm run build:production && npm run deploy:production
QA-TESTnpm run build:qa && npm run deploy:qa
bddjest bdd/*
buildparcel build src/empire.ts src/bigfarm.ts
build:devcross-env NODE_ENV=dev AD_LOG=on npm run build
build:localcross-env NODE_ENV=production parcel build src/empire.ts src/bigfarm.ts -d local
build:productioncross-env NODE_ENV=production npm run build --experimental-scope-hoisting -- --no-source-maps
build:qacross-env NODE_ENV=qa AD_LOG=on npm run build
deploy:devnpm run release -- --prerelease dev && npm publish --access public --tag dev
deploy:productionnpm run release && npm publish --access public --tag production
deploy:qanpm run release -- --prerelease qa && npm publish --access public --tag qa
flush:qacurl -s https://purge.jsdelivr.net/npm/@goodgamestudios/cxf-ia-venatus@qa/dist/index.js && curl -s https://purge.jsdelivr.net/npm/@goodgamestudios/cxf-ia-venatus@qa/dist/index.js.map
linttslint './src/**/*.ts'
localhttp-server --cors ./local -p 3366 -c-1
prebuildrimraf dist .cache
releasestandard-version
startparcel bdd/src/index.html -p 3330
testnpm run unit && npm run bdd
unitjest src/*

Dependencies2

@goodgamestudios/cxf-ready^1.0.1
readuz^1.0.0