6 packages flagged for continuity risk in 2026-W18.
Flagged packages combine high downstream reach with at least two independent fragility signals. Repositories and maintainer identities are never referenced in the viral surfaces.
Share card is regenerated by generate_weekly_card on every pipeline run.
Top findings
| Rank | Package | Severity | Risk | Primary finding |
|---|---|---|---|---|
| #1 | pypi · jinja2 | High | 46.3 | 0 releases in the last 365 days vs 3 in the prior 365 days. |
| #2 | npm · tslib | High | 43.6 | 0 releases in the last 365 days vs 4 in the prior 365 days. |
| #3 | npm · inherits | High | 39.9 | 2504 days since latest release. |
| #4 | pypi · pyyaml | High | 35.6 | Top contributor authored 100% of commits over the last 365 days (unique contributors: 1). |
| #5 | npm · graceful-fs | High | 34.5 | 1138 days since latest release. |
Ecosystem breakdown
- npm 3
- pypi 3