Back to Dashboard
20
073 files scannedApril 7, 2026

Some concerns found — review before installing

We found some patterns that are worth checking. They might be harmless, but it's good practice to understand what a package does before trusting it. Read through the findings below.

What We Found(1 issue)

Each card explains what was found and what it means in plain English. Click "Technical details" for the full breakdown.

MEDIUMMED-004

Suspicious. This package loads code from an unknown location decided at runtime. We can't tell what it will actually run because it depends on a variable. This makes it harder to verify the package is safe.

Technical details

Dynamic require/import with variable arguments loads code determined at runtime. This can be used to load payloads that static analysis can't detect.

import(w
extension/content-script.js:39

Finding Summary

0

Critical

0

High

1

Medium

0

Low

0

Info