PkgRadar

npm · registry.npmjs.org

dotsec

Credential file access: matched "AWS_ACCESS_KEY"

Scanned versions

VersionVerdictScoreScanned (UTC)
6.0.1-feat-dotsec-set-description.ffdc3e7Low risk02026-06-11
6.0.1-docs-dx-overhaul.0fac9aaLow risk02026-06-11
6.0.1-docs-dx-overhaul.74c677eLow risk02026-06-11
6.0.1-feat-dotsec-set-description.602bcb8Low risk02026-06-11
6.0.1-chore-rename-v4-types-to-js.0def260Low risk02026-06-11
6.0.1-feat-dotsec-set-description.87a9f88Low risk02026-06-11
6.0.1-docs-migrate-version-and-exec-warning.2d2c993Low risk02026-06-11
6.0.1-feat-dotsec-set-description.3c44ad0Low risk02026-06-11
6.0.1-fix-parser-hardening-and-fuzz.054ca0dLow risk02026-06-11
6.0.1-feat-dotsec-set-description.0770f59Low risk02026-06-11
6.0.1-test-kms-localstack.b83749bLow risk02026-06-11
6.0.1-test-kms-localstack.bddc68cLow risk02026-06-11
6.0.1-feat-dotsec-set-description.4351f42Low risk02026-06-11
6.0.1-test-kms-localstack.526be29Low risk02026-06-11
6.0.1-feat-dotsec-set-description.ee83589Low risk02026-06-11
6.0.1-fix-zeroize-error-paths.1e8131cLow risk02026-06-11
6.0.1-fix-parser-hardening-and-fuzz.7eca454Low risk02026-06-11
6.0.1-fix-zeroize-error-paths.60910ccLow risk02026-06-11
6.0.1-fix-migrate-path-injection.060bcebLow risk02026-06-11
6.0.1-feat-dotsec-set-description.22f1fffLow risk02026-06-11
1.0.0-alpha.5Low risk02026-06-11
6.0.0Low risk02026-06-11
1.0.0-alpha.4Low risk02026-06-11
1.0.0-alpha.6Review52026-06-11
6.0.1-fix-migrate-path-injection.5df6876Low risk02026-06-09
6.0.1-test-kms-localstack.34b1eb6Low risk02026-06-09
6.0.1-fix-parser-hardening-and-fuzz.14d63f6Low risk02026-06-09
6.0.1-fix-zeroize-error-paths.2cce61bLow risk02026-06-09
6.0.1-feat-dotsec-set-description.3b6241bLow risk02026-06-04
6.0.1-feat-dotsec-set-description.d51dc66Low risk02026-06-04
6.0.1-feat-kms-encryption-context.745a8e5Low risk02026-06-02
6.0.1-feat-v3-format-mac-header.90d67caLow risk02026-06-02
6.0.1-feat-v3-format-mac-header.b398eb4Low risk02026-06-02
6.0.1-beta.df38ea0Low risk02026-06-01
6.0.1-release-plz-2026-05-29T11-28-03Z.98c4547Low risk02026-06-01
6.0.1-beta.4ee46dcLow risk02026-06-01
6.0.1-release-plz-2026-05-29T11-28-03Z.32736b6Low risk02026-06-01
6.0.1-release-plz-2026-05-29T11-28-03Z.b421cf4Low risk02026-06-01
6.0.1-beta.41c3f1eLow risk02026-06-01
6.0.1-release-plz-2026-05-29T11-28-03Z.8445346Low risk02026-06-01
6.0.1-beta.861abb4Low risk02026-06-01
6.0.1-beta.e6da646Low risk02026-05-29
6.0.1-release-plz-2026-05-29T11-28-03Z.bb2823aLow risk02026-05-29
6.0.0-release-plz-2026-05-29T11-28-03Z.51c8031Low risk02026-05-29
6.0.0-release-plz-2026-05-29T11-28-03Z.b83ce9dLow risk02026-05-29
5.0.2-fix-run-inherits-cwd.1193721Low risk02026-05-29
5.0.2-fix-run-inherits-cwd.b6b12c9Low risk02026-05-29
5.0.2-fix-run-inherits-cwd.ca756fbLow risk02026-05-29
5.0.1-fix-run-inherits-cwd.107a440Low risk02026-05-29
5.0.2-fix-run-inherits-cwd.40bd9ebLow risk02026-05-29

Block this in CI

PkgRadar gates dotsec (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence