PkgRadar

npm · registry.npmjs.org

knowly

Credential file access: matched "id_rsa"

Why PkgRadar flagged 6.59.0

SeveritySignalEvidence
mediumCredential file accessmatched "id_rsa" · package/bin/knowly.js

Scanned versions

VersionVerdictScoreScanned (UTC)
6.59.0Review202026-06-12
6.50.0Review202026-06-12
6.58.0Review202026-06-12
6.48.0Review202026-06-12
6.49.0Review202026-06-12

Block this in CI

PkgRadar gates knowly (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence