npm · registry.npmjs.org
create-pubinfo-pr
Credential File Packaged: package/templates/pubinfo-app/.env
Why PkgRadar flagged 0.232.1
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential File Packaged | package/templates/pubinfo-app/.env · package/templates/pubinfo-app/.env |
| high | Credential File Packaged | package/templates/pubinfo-module/playground/.env · package/templates/pubinfo-module/playground/.env |
| high | Credential File Packaged | package/templates/pubinfo-monorepo/apps/basic/.env · package/templates/pubinfo-monorepo/apps/basic/.env |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.232.1 | High risk | 73 | 2026-06-15 |
0.233.1 | High risk | 73 | 2026-06-15 |
0.234.1 | High risk | 73 | 2026-06-15 |
0.242.1 | High risk | 73 | 2026-06-15 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]