PkgRadar

npm · registry.npmjs.org

@gotgenes/pi-permission-system

Credential file access: matched ".ssh"

Why PkgRadar flagged 7.1.4

SeveritySignalEvidence
highCredential file accessmatched ".ssh" · package/schemas/permissions.schema.json
highCredential file accessmatched ".ssh" · package/test/rule.test.ts
mediumRemote Payloadmatched "raw.githubusercontent.com" · package/config/config.example.json
mediumRemote Payloadmatched "raw.githubusercontent.com" · package/schemas/permissions.schema.json
mediumRemote Payloadmatched "curl " · package/test/bash-external-directory.test.ts

Scanned versions

VersionVerdictScoreScanned (UTC)
13.1.0Low risk02026-06-13
13.0.0Low risk02026-06-12
12.0.0Low risk02026-06-12
11.0.0Low risk02026-06-11
10.10.1Low risk02026-06-11
10.10.0Low risk02026-06-10
10.9.0Low risk02026-06-10
10.8.0Low risk02026-06-10
10.7.1Low risk02026-06-10
10.7.2Low risk02026-06-10
10.7.0Low risk02026-06-09
10.6.0Low risk02026-06-08
10.5.3Low risk02026-06-08
10.5.2Low risk02026-06-08
10.5.1Low risk02026-06-07
10.5.0Low risk02026-06-07
10.4.0Low risk02026-06-07
10.3.1Low risk02026-06-06
10.3.0Low risk02026-06-05
10.2.0Low risk02026-06-05
10.1.0Low risk02026-06-04
10.0.0Low risk02026-06-02
9.2.0Low risk02026-06-02
9.1.0Low risk02026-06-02
9.0.1Low risk02026-06-01
9.0.0Low risk02026-06-01
8.3.2Low risk02026-06-01
8.3.1Low risk02026-06-01
8.3.0Low risk02026-06-01
8.2.1Low risk02026-05-31
8.2.0Low risk02026-05-31
8.1.0Low risk02026-05-31
8.0.0Low risk02026-05-30
7.4.1Low risk02026-05-30
7.4.0Low risk02026-05-29
7.3.3Low risk02026-05-28
7.3.2Low risk02026-05-27
7.3.1Low risk02026-05-26
7.3.0Low risk02026-05-26
7.1.4Review302026-05-24
7.2.0Review302026-05-24

Block this in CI

PkgRadar gates @gotgenes/pi-permission-system (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @gotgenes/[email protected]
Start free — 25 scans / moView full evidence