RubyGems · rubygems.org

jwt_auth_cognito

Credential file access: matched "AWS_ACCESS_KEY"

Why PkgRadar flagged 1.0.0.pre.beta.12

Severity	Signal	Evidence
high	Credential file access	matched "AWS_ACCESS_KEY" · lib/jwt_auth_cognito/ssm_service.rb

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`1.0.0.pre.beta.12`	High risk	21	2026-06-08

Block this in CI

PkgRadar gates jwt_auth_cognito (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem rubygems [email protected]