PkgRadar

PyPI · pypi.org

rio-tiler

Credential file access: matched "AWS_ACCESS_KEY"

Why PkgRadar flagged 9.2.1

SeveritySignalEvidence
mediumCredential file accessmatched "AWS_ACCESS_KEY" · rio_tiler-9.2.1/rio_tiler/io/stac.py

Scanned versions

VersionVerdictScoreScanned (UTC)
9.2.1Review32026-06-12
9.2.0Review32026-06-12
8.0.9Review32026-06-04
7.9.6Review32026-06-04
9.1.1Review32026-06-03
9.1.0Review32026-06-01

Block this in CI

PkgRadar gates rio-tiler (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi rio-tiler==9.2.1
Start free — 25 scans / moView full evidence
rio-tiler — PyPI security scan | PkgRadar