Name: tessl/npm-langfuse--client
Author: tessl

tessl/npm-langfuse--client

Langfuse API client for universal JavaScript environments providing observability, prompt management, datasets, experiments, and scoring capabilities

Moderation error

Malicious code detected in tile.json: This tile.json exhibits signs of a supply chain attack through typosquatting/dependency confusion. The package name 'tessl/npm-langfuse--client' (with double hyphen) mimics the legitimate '@langfuse/client' package. The 'describes' field references the real package 'pkg:npm/%40langfuse/client@4.2.0' but the tile name uses a different format with 'npm-langfuse--client', suggesting an attempt to intercept or impersonate the legitimate Langfuse client package. This pattern is consistent with dependency confusion attacks where malicious packages use similar names to legitimate ones.

Overview

Eval results

Files

{
  "name": "tessl/npm-langfuse--client",
  "version": "4.2.1",
  "docs": "docs/index.md",
  "describes": "pkg:npm/%40langfuse/client@4.2.0",
  "summary": "Langfuse API client for universal JavaScript environments providing observability, prompt management, datasets, experiments, and scoring capabilities",
  "private": false
}

Install with Tessl CLI

npx tessl i tessl/npm-langfuse--client

docs

tile.json