PkgRadar

npm · registry.npmjs.org

@medipass/web-sdk

Credential file access: matched ".aws"

Why PkgRadar flagged 13.0.2

SeveritySignalEvidence
highCredential file accessmatched ".aws" · package/dist/index.js

Scanned versions

VersionVerdictScoreScanned (UTC)
13.0.2Review302026-05-25
13.0.4Review302026-05-25

Related campaigns

Block this in CI

PkgRadar gates @medipass/web-sdk (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @medipass/[email protected]
Start free — 25 scans / moView full evidence