npm · registry.npmjs.org
@pulumi/aws
Credential file access: matched ".aws"
Why PkgRadar flagged 7.31.0-alpha.1779436740
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | matched ".aws" · package/s3/accessPoint.js |
| high | Credential file access | matched ".aws" · package/macie2/account.js |
| high | Credential file access | matched ".aws" · package/organizations/account.js |
| high | Credential file access | matched ".aws" · package/iam/accountPasswordPolicy.js |
| high | Credential file access | matched ".aws" · package/s3/accountPublicAccessBlock.js |
| high | Credential file access | matched ".aws" · package/ecs/accountSettingDefault.js |
| high | Credential file access | matched ".aws" · package/quicksight/accountSettings.js |
| high | Credential file access | matched ".aws" · package/quicksight/accountSubscription.js |
| high | Credential file access | matched ".aws" · package/memorydb/acl.js |
| high | Credential file access | matched ".aws" · package/sfn/activity.js |
| high | Credential file access | matched ".aws" · package/eks/addon.js |
| high | Credential file access | matched ".aws" · package/bedrock/agentDataSource.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
7.33.0-alpha.1781077846 | Low risk | 0 | 2026-06-10 |
7.33.0-alpha.1780990142 | Low risk | 0 | 2026-06-09 |
7.33.0-alpha.1780729991 | Low risk | 0 | 2026-06-06 |
7.33.0-alpha.1780645471 | Low risk | 0 | 2026-06-05 |
7.33.0-alpha.1780558734 | Low risk | 0 | 2026-06-04 |
6.83.4 | Low risk | 0 | 2026-06-03 |
7.33.0-alpha.1780472821 | Low risk | 0 | 2026-06-03 |
7.33.0-alpha.1780317927 | Low risk | 0 | 2026-06-01 |
7.33.0-alpha.1780127692 | Low risk | 0 | 2026-05-30 |
7.32.0 | Low risk | 0 | 2026-05-29 |
7.32.0-alpha.1780075428 | Low risk | 0 | 2026-05-29 |
7.32.0-alpha.1780014499 | Low risk | 0 | 2026-05-29 |
7.32.0-alpha.1779953541 | Low risk | 0 | 2026-05-28 |
7.32.0-alpha.1779871574 | Low risk | 0 | 2026-05-27 |
7.31.0 | Low risk | 0 | 2026-05-26 |
7.31.0-alpha.1779782175 | Low risk | 0 | 2026-05-26 |
7.31.0-alpha.1779607499 | Low risk | 0 | 2026-05-25 |
7.31.0-alpha.1779696236 | Low risk | 0 | 2026-05-25 |
7.31.0-alpha.1779436740 | Review | 112 | 2026-05-24 |
Related campaigns
- credential_paths:matched ".Ssh" — 2 releases, max score 15231
Block this in CI
pkgradar gate --ecosystem npm @pulumi/[email protected]