npm · registry.npmjs.org
sealos-cli
Credential file access: matched "Kubeconfig"
Why PkgRadar flagged 1.1.5
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | matched "Kubeconfig" · package/src/lib/oauth.ts |
| medium | Obfuscation Density | high encoded/escaped-token density · package/dist/bin/cli.cjs |
| medium | Obfuscation Density | high encoded/escaped-token density · package/dist/main.cjs |
| medium | Obfuscation Density | high encoded/escaped-token density · package/dist/bin/cli.mjs |
| medium | Obfuscation Density | high encoded/escaped-token density · package/dist/main.mjs |
| medium | Credential file access | matched "kubeconfig" · package/dist/bin/cli.mjs |
| medium | Credential file access | matched "kubeconfig" · package/dist/main.mjs |
| medium | Credential file access | matched "kubeconfig" · package/src/lib/auth.ts |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.1.5 | Review | 138 | 2026-05-28 |
1.1.6 | Review | 138 | 2026-05-28 |
Block this in CI
pkgradar gate --ecosystem npm [email protected]