npm · registry.npmjs.org
forgemap
Credential file access: matched ".ssh"
Why PkgRadar flagged 0.1.0-dev.35-1e6da52
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | matched ".ssh" · package/dist/bin/forgemap.mjs |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.4.1-dev-main.54-85b5e29 | Low risk | 0 | 2026-06-08 |
0.4.1-dev.53-1d36daa | Low risk | 0 | 2026-06-08 |
0.4.1-dev.52-d6b74c6 | Low risk | 0 | 2026-06-08 |
0.4.1-dev-main.51-e23c7d0 | Low risk | 0 | 2026-05-30 |
0.4.1-dev.50-2c04b38 | Low risk | 0 | 2026-05-30 |
0.4.1-dev.49-4804d8e | Low risk | 0 | 2026-05-30 |
0.4.1-dev.47-aae639d | Low risk | 0 | 2026-05-29 |
0.4.1-dev-main.48-b1e759e | Low risk | 0 | 2026-05-29 |
0.4.0-dev.42-19c7093 | Low risk | 0 | 2026-05-27 |
0.4.0-dev-main.43-1758b5e | Low risk | 0 | 2026-05-27 |
0.1.0-dev.39-7be8a05 | Low risk | 0 | 2026-05-25 |
0.1.0-dev-main.40-70e9f5a | Low risk | 0 | 2026-05-25 |
0.1.0-dev-main.36-8c52303 | Low risk | 0 | 2026-05-25 |
0.1.0-dev.35-1e6da52 | Review | 30 | 2026-05-25 |
0.1.0-dev.34-313527b | Review | 30 | 2026-05-25 |
0.1.0-dev-main.32-53be8b9 | Review | 30 | 2026-05-24 |
0.1.0-dev.31-22af2e3 | Review | 30 | 2026-05-24 |
0.1.0-dev-main.30-07643ac | Review | 30 | 2026-05-24 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]