Package evidence

@wix/[email protected]

no findings

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Versions published: 33Mature · −50% score
First published: Feb 2021
Publisher: wix-bi-publisher

Effective trust discount applied: −50% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.

Recommended action

Looks clean — keep monitoring

No high-signal indicators in the stored static report. PkgRadar will re-check on the next ingest pass.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@wix/[email protected]"],"fail_on":"review"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@wix/[email protected]"],"fail_on":"review"}'

Publisherwix-bi-publisher

Artifact bytes85,619

Previous version1.0.32

Published2024-05-21T09:19:38.491Z

SHA-256ea226f9797e5121512913916226917e998728b650e84e1f6da7aff822e14bd4f

Why flagged

What the scanner saw

No high-signal static finding in the saved report.

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

low

16d agoLast checked

lowRisk

0Score

1.0.33Version

Status history (1 event)

new → available16d ago · risk low · score 0 · status changed

Evidence

Static findings

No findings stored for this release.

Manifest

Package metadata

Scripts23

buildnpm run build:ts && npm run update-statics
build:startnpm run build && npm start
build:tstsc -b tsconfig.build.json
fnmfnm exec which node | xargs -I % ln -sf % ./.fnm-node && chmod +x ./.fnm-node
link:sharedcd ../shared && npm link && cd ../service && npm link @wix/quix-shared
linttslint -p tsconfig.json -c tslint.json
lint:fixtslint -p tsconfig.json -c tslint.json --fix
startDB_HOST=localhost ts-node --files scripts/start.ts
start:debugnodemon --config nodemon-debug.json
start:devnodemon
start:prodnode index.js
testjest
test:build:mysqlnpm run build && npm run test:mysql
test:cinpm run test && npm run test:mysql && npm run test:e2e
test:covjest --coverage
test:debugnode --inspect-brk -r ts-node/register node_modules/.bin/jest --runInBand
test:debug:mysqlDB_TYPE=mysql node --inspect-brk -r ts-node/register node_modules/.bin/jest --runInBand
test:e2enpm run test:e2e:sqlite && npm run test:e2e:mysql
test:e2e:mysqlDB_TYPE=mysql jest --runInBand --config ./test/jest-e2e.js
test:e2e:sqlitejest --runInBand --config ./test/jest-e2e.js
test:mysqlDB_TYPE=mysql jest --runInBand
test:watchjest --watch
update-staticsts-node scripts/update-statics.ts

Dependencies31

@nestjs/common^7.0.0
@nestjs/core^7.0.0
@nestjs/jwt^7.0.0
@nestjs/platform-express^7.0.0
@nestjs/platform-ws^7.0.0
@nestjs/typeorm^7.0.0
@nestjs/websockets^7.0.0
@types/node-fetch^2.5.0
@types/ws^6.0.4
@wix/quix-shared^1.0.15
axios^0.21.0
cookie^0.4.1
cookie-parser^1.4.4
dotenv^7.0.0
fp-ts^2.0.1
google-auth-library^6.1.6
http-proxy-middleware^0.19.1
lodash^4.17.19
mysql2^2.1.0
node-fetch^2.6.1
reflect-metadata^0.1.13
rimraf^2.6.2
rxjs^6.3.3
tapable^1.1.1
ts-node^7.0.1
tsconfig-paths^3.8.0
typeorm0.2.45
typescript^4.0.0
uuid^3.3.2
velocity^0.7.2
…and 1 more.