npm · registry.npmjs.org
@spytecgps/nova-orm
Credential file access: matched ".AWS"
Why PkgRadar flagged 1.4.243
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | matched ".AWS" · package/dist/utils/mysqlSpanProcessor.js |
| high | Credential file access | matched ".AWS" · package/dist/utils/queryTags.js |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.4.258 | Low risk | 0 | 2026-06-11 |
1.4.257 | Low risk | 0 | 2026-06-11 |
1.4.256 | Low risk | 0 | 2026-06-08 |
1.4.255 | Low risk | 0 | 2026-06-05 |
1.4.254 | Low risk | 0 | 2026-06-02 |
1.4.253 | Low risk | 0 | 2026-06-01 |
1.4.252 | Low risk | 0 | 2026-06-01 |
1.4.251 | Low risk | 0 | 2026-05-28 |
1.4.250 | Low risk | 0 | 2026-05-28 |
1.4.249 | Low risk | 0 | 2026-05-27 |
1.4.248 | Low risk | 0 | 2026-05-27 |
1.4.247 | Low risk | 0 | 2026-05-26 |
1.4.246 | Low risk | 0 | 2026-05-26 |
1.4.245 | Low risk | 0 | 2026-05-26 |
1.4.244 | Low risk | 0 | 2026-05-25 |
1.4.243 | Review | 50 | 2026-05-25 |
1.4.242 | Review | 50 | 2026-05-24 |
1.4.241 | Review | 50 | 2026-05-24 |
1.4.240 | Review | 50 | 2026-05-24 |
Related campaigns
- CircleCI — 8 releases, max score 64
Block this in CI
pkgradar gate --ecosystem npm @spytecgps/[email protected]