Loading npm security reports…
Monorepo tooling for @vnejs
No confirmed malicious attack surface is established. The package is monorepo tooling with powerful user-invoked shell operations for build, test, publish, dependency sync, and cleanup.
Package source references child process execution.
src/workspace/fetch-npm-version.jsView on unpkg · L1Package source invokes a package manager install command at runtime.
src/publish/utils.jsView on unpkg · L27Package source references child process execution.
src/workspace/fetch-npm-version.jsView on unpkg · L1Package source invokes a package manager install command at runtime.
src/publish/utils.jsView on unpkg · L27