Go modules · proxy.golang.org

github.com/tomr-ninja/coach

Credential file access: matched "AWS_ACCESS_KEY"

Why PkgRadar flagged v0.0.0-20260515184453-1a8b3e0f9ce9

Severity	Signal	Evidence
high	Credential file access	matched "AWS_ACCESS_KEY" · github.com/tomr-ninja/[email protected]/run.go

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`v0.0.0-20260515184453-1a8b3e0f9ce9`	High risk	30	2026-05-30

Block this in CI

PkgRadar gates github.com/tomr-ninja/coach (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/tomr-ninja/[email protected]