PkgRadar

PyPI · pypi.org

cogflow

Credential file access: matched "AWS_ACCESS_KEY"

Why PkgRadar flagged 3.0.0b8

SeveritySignalEvidence
mediumCredential file accessmatched "AWS_ACCESS_KEY" · cogflow-3.0.0b8/cogflow/core/pipelines/orchestration.py

Scanned versions

VersionVerdictScoreScanned (UTC)
3.0.0b8Review152026-06-17
3.0.0b7Review152026-06-15
3.0.0b6Review152026-06-10
3.0.0b5Review152026-06-10
3.0.0b4Review152026-06-02

Block this in CI

PkgRadar gates cogflow (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi cogflow==3.0.0b8
Start free — 25 scans / moView full evidence
cogflow — PyPI security scan | PkgRadar