Trust signals
Why this verdict
PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.
- Versions published
- 1,333Mature · −50% score
- First published
- Oct 2023
- Publisher
- elliotpayload
Effective trust discount applied: −50% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.
Recommended action
Looks clean — keep monitoringNo high-signal indicators in the stored static report. PkgRadar will re-check on the next ingest pass.
Block this release in CIcurl · GitHub Actions
Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer $PKGRADAR_TOKEN" \
-H "Content-Type: application/json" \
-d '{"specs":["@payloadcms/[email protected]"],"fail_on":"review"}'GitHub Actions step:
- name: PkgRadar gate
run: |
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
-H "Content-Type: application/json" \
-d '{"specs":["@payloadcms/[email protected]"],"fail_on":"review"}'Why flagged
What the scanner saw
No high-signal static finding in the saved report.
Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.
Availability ledger
available
Status history (1 event)
- new → available · risk low · score 0 · status changed
Evidence
Static findings
No findings stored for this release.
Manifest
Package metadata
Scripts17
buildpnpm build:reactcompilerbuild:babelrm -rf dist_optimized && babel dist --out-dir dist_optimized --source-maps --extensions .ts,.js,.tsx,.jsx,.cjs,.mjs && rm -rf dist && mv dist_optimized distbuild:bundle-for-analysisrm -rf dist esbuild && rm -rf tsconfig.tsbuildinfo && pnpm build:swc && pnpm build:babel && pnpm copyfiles && pnpm build:esbuild esbuild --no-splitbuild:cleanfind . \( -type d \( -name build -o -name dist -o -name .cache \) -o -type f -name tsconfig.tsbuildinfo \) -exec rm -rf {} + && pnpm buildbuild:debugrm -rf dist && rm -rf tsconfig.tsbuildinfo && pnpm build:swc:debug && pnpm copyfiles:debug && pnpm build:typesbuild:esbuildnode bundle.jsbuild:esbuild:postprocessrm -rf dist/exports/client && mv dist/exports/client_optimized dist/exports/clientbuild:reactcompilerrm -rf dist && rm -rf tsconfig.tsbuildinfo && pnpm build:swc && pnpm build:babel && pnpm copyfiles && pnpm build:esbuild && pnpm build:esbuild:postprocess && pnpm build:typesbuild:swcswc ./src -d ./dist --config-file .swcrc --strip-leading-pathsbuild:swc:debugswc ./src -d ./dist --config-file .swcrc-debug --strip-leading-pathsbuild:typestsc --emitDeclarationOnly --outDir distbuild:without_reactcompilerrm -rf dist && rm -rf tsconfig.tsbuildinfo && pnpm copyfiles && pnpm build:types && pnpm build:swc && pnpm build:esbuild && pnpm build:esbuild:postproces && rm -rf dist/exports/client && mv dist/exports/client_unoptimized dist/exports/clientcleanrimraf -g {dist,*.tsbuildinfo,esbuild}copyfilescopyfiles -u 1 "src/**/*.{html,css,ttf,woff,woff2,eot,svg,jpg,png,json}" dist/copyfiles:debugcopyfiles -u 1 "src/**/*.{html,css,scss,ttf,woff,woff2,eot,svg,jpg,png,json}" dist/linteslint .lint:fixeslint . --fix
Dependencies27
@lexical/clipboard0.41.0@lexical/headless0.41.0@lexical/html0.41.0@lexical/link0.41.0@lexical/list0.41.0@lexical/mark0.41.0@lexical/react0.41.0@lexical/rich-text0.41.0@lexical/selection0.41.0@lexical/table0.41.0@lexical/utils0.41.0@payloadcms/translations4.0.0-internal.293e026@payloadcms/ui4.0.0-internal.293e026acorn8.16.0bson-objectid2.0.4csstype3.2.3dequal2.0.3escape-html1.0.3jsox1.2.125lexical0.41.0mdast-util-from-markdown2.0.3mdast-util-mdx-jsx3.2.0micromark-extension-mdx-jsx3.0.2qs-esm8.0.1react-error-boundary6.1.1ts-essentials10.0.3uuid14.0.0