PkgRadar

PyPI · pypi.org

envara

Credential File Packaged: envara-0.5.6/examples/config/.env

Why PkgRadar flagged 0.5.6

SeveritySignalEvidence
highCredential File Packagedenvara-0.5.6/examples/config/.env · envara-0.5.6/examples/config/.env

Scanned versions

VersionVerdictScoreScanned (UTC)
0.5.6High risk352026-06-11
0.5.5High risk352026-06-10
0.5.4High risk352026-06-04
0.5.3High risk352026-06-04
0.5.2High risk352026-06-03
0.5.1High risk352026-05-30

Block this in CI

PkgRadar gates envara (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi envara==0.5.6
Start free — 25 scans / moView full evidence