npm · registry.npmjs.org
@floracodex/nestjs-secrets
Credential file access: matched ".Aws"
Why PkgRadar flagged 1.0.2
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | matched ".Aws" · package/dist/providers/aws-parameter-store.provider.js |
| high | Credential file access | matched ".Aws" · package/dist/providers/aws-secrets-manager.provider.js |
| high | Credential file access | matched ".Azure" · package/dist/providers/azure-key-vault.provider.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.2 | Review | 80 | 2026-05-24 |
1.0.3 | Low risk | 0 | 2026-05-24 |
Related campaigns
- credential_paths:matched ".Azure" — 24 releases, max score 6453
Block this in CI
pkgradar gate --ecosystem npm @floracodex/[email protected]