npm · registry.npmjs.org

@appcircle/cli

Shell Credential File Read

Why PkgRadar flagged 2.8.0

Severity	Signal	Evidence
high	Shell Credential File Read	—
high	Shell Credential File Read	—

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`2.8.0`	High risk	27	2026-06-30
`2.7.7`	Low risk	0	2026-06-17
`2.7.8-alpha.1`	Low risk	0	2026-06-17
`2.7.8-alpha.2`	Low risk	0	2026-06-17
`2.7.8-alpha.3`	Low risk	0	2026-06-17
`2.8.0-beta.3`	Low risk	0	2026-06-17

Block this in CI

PkgRadar gates @appcircle/cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @appcircle/[email protected]