PkgRadar

PyPI · pypi.org

appkit-commons

Credential file access: matched ".AZURE"

Why PkgRadar flagged 1.11.2

SeveritySignalEvidence
mediumCredential file accessmatched ".AZURE" · appkit_commons-1.11.2/src/appkit_commons/configuration/secret_provider.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.12.2Low risk02026-06-15
1.12.1Low risk02026-06-15
1.12.0Low risk02026-06-13
1.11.3Low risk02026-05-31
1.11.2Review72026-05-26

Block this in CI

PkgRadar gates appkit-commons (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi appkit-commons==1.11.2
Start free — 25 scans / moView full evidence