Package evidence

@odatano/[email protected]

no findings

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Weekly downloads: 539
Versions published: 48
First published: Feb 2026
Publisher: maxalexweber

Recommended action

Looks clean — keep monitoring

No high-signal indicators in the stored static report. PkgRadar will re-check on the next ingest pass.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@odatano/[email protected]"],"fail_on":"review"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@odatano/[email protected]"],"fail_on":"review"}'

Publishermaxalexweber

Artifact bytes264,695

Previous version1.9.0

Published2026-06-16T16:04:30.954Z

SHA-2567bd5fd496098a6ecc4198961f503808d91f362a930c28491b24a7fbaba2ea4d3

Why flagged

What the scanner saw

No high-signal static finding in the saved report.

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

low

4d agoLast checked

lowRisk

0Score

1.9.1Version

Status history (1 event)

new → available4d ago · risk low · score 0 · status changed

Evidence

Static findings

No findings stored for this release.

Manifest

Package metadata

Scripts25

buildnpm run cds:types && tsc
build:pluginnpm run cds:types && tsc -p tsconfig.build.json
cds:servecds serve --with-mocks
cds:typescds-typer "*" --outputDirectory @cds-models
cds:watchcds watch
cleannode -e "require('glob').sync('{srv,db,src}/**/*.{js,js.map,d.ts,d.ts.map}',{ignore:'**/node_modules/**'}).forEach(f=>require('fs').unlinkSync(f));console.log('Clean complete')"
clean:modelsnode -e "require('fs').rmSync('@cds-models',{recursive:true,force:true});console.log('Removed @cds-models')"
db:deploycds deploy
linteslint .
prepublishOnlynpm run clean && npm run clean:models && npm run build:plugin
pretestnpm run cds:types && npm run db:deploy
startcds-serve
testjest --runInBand
test:cijest --runInBand --testPathIgnorePatterns=core-ogmios.test.ts
test:ci:coveragejest --runInBand --coverage --testPathIgnorePatterns=core-ogmios.test.ts
test:coveragejest --runInBand --coverage
test:integrationnpm test -- --testPathPattern=integration
test:integration:blockfrostnpm test -- --testPathPattern=core.blockfrost.test.ts
test:integration:bothnpm run test:integration:blockfrost && npm run test:integration:koios
test:integration:koiosnpm test -- --testPathPattern=core.koios.test.ts
test:integration:ogmiosnpm test -- --testPathPattern=core-ogmios.test.ts
test:unitnpm test -- --testPathPattern=unit
typechecktsc --noEmit
watch-odatanocds watch --open odatano/index.html?sap-ui-xx-viewCache=false --livereload false
watch-walletcds watch --open wallet/webapp/index.html

Dependencies13

@blockfrost/blockfrost-js~6.0.0
@cap-js/hana^2
@cardano-ogmios/client^6.14.0
@harmoniclabs/buildooor^0.2.6
@harmoniclabs/cardano-costmodels-ts~1.4.0
@harmoniclabs/cardano-ledger-ts^0.5.1
@harmoniclabs/cbor^2.0.1
@harmoniclabs/crypto^0.3.0
@harmoniclabs/uint8array-utils^1.0.4
@sap/xssec^4
axios^1.16.1
bech32^2.0.0
blake2b^2.1.4

Optional dependencies1

pkcs11js^2.1.6