Cargo · crates.io

rs1090

Credential file access: matched "id_rsa"

Why PkgRadar flagged 0.6.0

Severity	Signal	Evidence
high	Credential file access	matched "id_rsa" · rs1090-0.6.0/src/source/ssh.rs

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.6.0`	High risk	15	2026-06-12

Block this in CI

PkgRadar gates rs1090 (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem cargo [email protected]