Cargo · crates.io

tantivy-remote

Credential File Packaged: tantivy-remote-0.6.0/.env

Why PkgRadar flagged 0.6.0

Severity	Signal	Evidence
high	Credential File Packaged	tantivy-remote-0.6.0/.env · tantivy-remote-0.6.0/.env

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.6.0`	High risk	24	2026-06-12
`0.5.0`	High risk	24	2026-06-04
`0.4.1`	High risk	24	2026-06-01
`0.4.0`	High risk	24	2026-06-01

Block this in CI

PkgRadar gates tantivy-remote (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem cargo [email protected]