PkgRadar

PyPI · pypi.org

docguard-cli

Credential File Packaged: docguard_cli-0.24.0/.npmrc

Why PkgRadar flagged 0.24.0

SeveritySignalEvidence
highCredential File Packageddocguard_cli-0.24.0/.npmrc · docguard_cli-0.24.0/.npmrc
highCredential File Packageddocguard_cli-0.24.0/.claude/worktrees/gallant-bhabha-0b72fc/.npmrc · docguard_cli-0.24.0/.claude/worktrees/gallant-bhabha-0b72fc/.npmrc
highCredential File Packageddocguard_cli-0.24.0/.claude/worktrees/objective-robinson-841179/.npmrc · docguard_cli-0.24.0/.claude/worktrees/objective-robinson-841179/.npmrc
highCredential File Packageddocguard_cli-0.24.0/.claude/worktrees/zealous-ardinghelli-facf7d/.npmrc · docguard_cli-0.24.0/.claude/worktrees/zealous-ardinghelli-facf7d/.npmrc

Scanned versions

VersionVerdictScoreScanned (UTC)
0.24.0High risk1202026-05-31
0.23.0High risk402026-05-30
0.22.1High risk402026-05-30
0.22.0High risk402026-05-30
0.21.1High risk402026-05-30
0.21.0High risk402026-05-30

Block this in CI

PkgRadar gates docguard-cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi docguard-cli==0.24.0
Start free — 25 scans / moView full evidence