Summary
@contractspec/eslint-plugin-design-system v3.7.6 passed all six phases of Sigil's automated security scan with no findings detected. The scan analyzed 8 files for install hooks, dangerous code patterns, network exfiltration, credential access, obfuscation, provenance, prompt injection, and skill security signals.
v3.7.6
20 March 2026, 02:34 UTC
by Sigil Bot
Risk Score
0
Findings
0
Files Scanned
8
Provenance
No findings detected. This package passed all 8 file scans with a verdict of LOW RISK.
Badge
Markdown
[](https://sigilsec.ai/scans/B3F9C185-3108-46B6-A680-14BEC52E2D2C)HTML
<a href="https://sigilsec.ai/scans/B3F9C185-3108-46B6-A680-14BEC52E2D2C"><img src="https://sigilsec.ai/badge/npm/@contractspec/eslint-plugin-design-system" alt="Sigil Scan"></a>Run This Scan Yourself
Scan your own packages
Run Sigil locally to audit any package before it touches your codebase.
Early Access
Get cloud scanning, threat intel, and CI/CD integration.
Join 150+ developers on the waitlist.
Get threat intelligence and product updates
Security research, new threat signatures, and product updates. No spam.
Other npm scans
Believe this result is incorrect? Request a review or see our Terms of Service and Methodology.