npm · registry.npmjs.org

@daytonaio/toolbox-api-client

Credential file access: matched ".aws"

Why PkgRadar flagged 0.179.0

Severity	Signal	Evidence
high	Credential file access	matched ".aws" · package/src/configuration.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.186.0`	Low risk	0	2026-06-10
`0.185.0`	Low risk	0	2026-06-09
`0.184.0`	Low risk	0	2026-06-03
`0.184.0-alpha.1`	Low risk	0	2026-05-29
`0.183.0`	Low risk	0	2026-05-29
`0.182.0`	Low risk	0	2026-05-26
`0.181.0`	Low risk	0	2026-05-25
`0.179.0`	Review	30	2026-05-24
`0.180.0`	Review	30	2026-05-24

Related campaigns

Block this in CI

PkgRadar gates @daytonaio/toolbox-api-client (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @daytonaio/[email protected]