# set-protocol-contract-utils@1.0.4 — Threat Briefing

High risk — threat briefing for npm package set-protocol-contract-utils@1.0.4. Capabilities, risk paths, and what to check.

- **Ecosystem:** npm
- **Latest version:** 1.0.4
- **License:** Apache-2.0

## Risk

- **Level:** high
- **Summary:** High severity SAST findings with install scripts present

## Capability Summary

| Capability | Level |
|---|---|
| install scripts | Postinstall |
| network access | none |
| filesystem | both |
| shell execution | none |

## Capabilities

### Other

- Dotenv file access [common]
- Long encoded payload [common]

### Filesystem

- Filesystem read [common]
- Filesystem write [common]

## Key Signals

- ****
- ****

## Maintainer


## Recommended Action

Review before installing in sensitive environments.