PkgRadar

Go modules · proxy.golang.org

github.com/diggerhq/opencomputer

Credential file access: matched "AWS_SECRET_ACCESS_KEY"

Why PkgRadar flagged v0.0.0-20260613002725-7c2fa3251554

SeveritySignalEvidence
highCredential file accessmatched "AWS_SECRET_ACCESS_KEY" · github.com/diggerhq/[email protected]/cmd/seed-dev-secrets/main.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.0-20260613002725-7c2fa3251554High risk352026-06-14
v0.0.0-20260611004442-c051060bb537High risk352026-06-13
v0.0.0-20260606005014-3ca4e6c306e8High risk352026-06-08
v0.0.0-20260603190327-cf0db1f3d219High risk352026-06-05
v0.0.0-20260529184209-f8fe282828a5High risk352026-05-31

Block this in CI

PkgRadar gates github.com/diggerhq/opencomputer (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/diggerhq/[email protected]
Start free — 25 scans / moView full evidence