PkgRadar

PyPI · pypi.org

fast-resume

Credential File Packaged: fast_resume-1.18.0/node_modules/bottleneck/.env

Why PkgRadar flagged 1.18.0

SeveritySignalEvidence
highCredential File Packagedfast_resume-1.18.0/node_modules/bottleneck/.env · fast_resume-1.18.0/node_modules/bottleneck/.env
highCredential File Packagedfast_resume-1.18.0/node_modules/nerf-dart/.npmrc · fast_resume-1.18.0/node_modules/nerf-dart/.npmrc
mediumCredential file accessmatched ".npmrc" · fast_resume-1.18.0/node_modules/@pnpm/npm-conf/index.js

Scanned versions

VersionVerdictScoreScanned (UTC)
1.18.0High risk852026-06-03
1.17.3High risk852026-05-30

Block this in CI

PkgRadar gates fast-resume (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi fast-resume==1.18.0
Start free — 25 scans / moView full evidence