PkgRadar

PyPI · pypi.org

pulumi-signalfx

Credential file access: matched ".aws"

Why PkgRadar flagged 7.28.0a1779867235

SeveritySignalEvidence
highCredential file accessmatched ".aws" · pulumi_signalfx-7.28.0a1779867235/pulumi_signalfx/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
7.28.0a1781077297Low risk02026-06-10
7.28.0a1780990407Low risk02026-06-09
7.28.0a1780907516Low risk02026-06-08
7.28.0a1780904281Low risk02026-06-08
7.28.0a1780817682Low risk02026-06-07
7.28.0a1780730314Low risk02026-06-06
7.28.0a1780645218Low risk02026-06-05
7.28.0a1780558758Low risk02026-06-04
7.28.0a1780472398Low risk02026-06-03
7.28.0a1780124833Low risk02026-05-30
7.28.0a1780007328Low risk02026-05-28
7.28.0a1779953785Low risk02026-05-28
7.28.0a1779867235Review132026-05-27

Block this in CI

PkgRadar gates pulumi-signalfx (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi pulumi-signalfx==7.28.0a1779867235
Start free — 25 scans / moView full evidence