npm · registry.npmjs.org

deeplake

Credential file access: matched "aws_access_key"

Why PkgRadar flagged 0.3.32

Severity	Signal	Evidence
high	Credential file access	matched "aws_access_key" · package/dist/browser/shared/credentials.js
high	Credential file access	matched "aws_access_key" · package/dist/node/shared/credentials.js
high	Credential file access	matched ".aws" · package/dist/browser/browser/storage.js
high	Credential file access	matched ".aws" · package/dist/node/node/storage.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.3.32`	Review	100	2026-05-24
`0.3.33`	Review	100	2026-05-24

Related campaigns

Block this in CI

PkgRadar gates deeplake (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]