PkgRadar

npm · registry.npmjs.org

tokrepo

Credential file access: matched "aws_access_key"

Scanned versions

VersionVerdictScoreScanned (UTC)
3.23.5Review52026-06-05
3.23.4Review32026-05-26
3.23.2Review52026-05-25
3.23.3Review32026-05-25

Block this in CI

PkgRadar gates tokrepo (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm [email protected]
Start free — 25 scans / moView full evidence