The full-stack meta-framework for Alpine.js — CLI and runtime
Static analysis flagged 14 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Package source references child process execution.
dist/chunk-TWAGSGFN.jsView on unpkg · L1Package source invokes a package manager install command at runtime.
dist/upgrade-L54XA4E5.jsView on unpkg · L48Package source references dynamic require/import behavior.
dist/chunk-ZRVXXPOE.jsView on unpkg · L114Package ships high-entropy non-source blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships compressed or archive-like blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
vscode/apex-alpine.vsixView on unpkgPackage source references child process execution.
dist/chunk-TWAGSGFN.jsView on unpkg · L1Package ships high-entropy non-source blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships compressed or archive-like blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
vscode/apex-alpine.vsixView on unpkgPackage source invokes a package manager install command at runtime.
dist/upgrade-L54XA4E5.jsView on unpkg · L48Package source references dynamic require/import behavior.
dist/chunk-ZRVXXPOE.jsView on unpkg · L114