PkgRadar

PyPI · pypi.org

krabby-bench

Credential file access: matched ".aws"

Why PkgRadar flagged 0.2.4

SeveritySignalEvidence
mediumCredential file accessmatched ".aws" · krabby_bench/_ecr.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.2.4Review302026-05-27
0.2.3Review302026-05-27
0.2.2Review302026-05-27
0.2.1Review302026-05-27
0.2.0Review302026-05-27

Block this in CI

PkgRadar gates krabby-bench (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi krabby-bench==0.2.4
Start free — 25 scans / moView full evidence