npm · registry.npmjs.org

@odigos/ui-kit

Credential file access: matched ".Azure"

Why PkgRadar flagged 0.0.238

Severity	Signal	Evidence
high	Credential file access	matched ".Azure" · package/lib/chunks/ui-components-rpRyPe3l.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.0.249`	Low risk	0	2026-06-11
`0.0.248`	Low risk	0	2026-06-11
`0.0.247`	Low risk	0	2026-06-11
`0.0.246`	Low risk	0	2026-06-09
`0.0.245`	Low risk	0	2026-06-07
`0.0.244`	Low risk	0	2026-06-04
`0.0.243`	Low risk	0	2026-06-03
`0.0.242`	Low risk	0	2026-06-02
`0.0.241`	Low risk	0	2026-06-01
`0.0.240`	Low risk	0	2026-05-28
`0.0.238`	Review	30	2026-05-24
`0.0.239`	Review	30	2026-05-24

Block this in CI

PkgRadar gates @odigos/ui-kit (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @odigos/[email protected]