PyPI · pypi.org

openmetadata-ingestion

Credential file access: matched "AWS_ACCESS_KEY"

Why PkgRadar flagged 1.12.11.0

Severity	Signal	Evidence
medium	Credential file access	matched "AWS_ACCESS_KEY" · openmetadata_ingestion-1.12.11.0/src/metadata/readers/dataframe/parquet.py

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`1.12.11.0`	Review	22	2026-06-12
`1.12.10.1`	Review	22	2026-06-08
`1.13.0.0`	Review	15	2026-06-08
`1.12.10.0`	Review	22	2026-06-03
`1.12.9.0`	Review	22	2026-05-30
`1.12.8.10`	Review	27	2026-05-29

Block this in CI

PkgRadar gates openmetadata-ingestion (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi openmetadata-ingestion==1.12.11.0