Package evidence

pulumi-aws==7.32.0a1779871574

Credential file access: matched ".aws"

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Versions published: 623Mature · −50% score
First published: Jun 2018

Effective trust discount applied: −50% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.

Recommended action

Review before promoting

Mixed signals: the package has indicators worth reading before allowing the update in automated dependency flows.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["pulumi-aws==7.32.0a1779871574"],"fail_on":"review"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["pulumi-aws==7.32.0a1779871574"],"fail_on":"review"}'

Publisherunknown

Artifact bytes9,601,420

Previous versionnone

Published2026-05-27T09:44:10

SHA-2567b052d2b131483aea61c6e394ec3efde507bc85c0cb34b117206e1e657cb951f

Why flagged

What the scanner saw

Credential file access: matched ".aws"

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

review

17d agoLast checked

reviewRisk

33Score

7.32.0a1779871574Version

Status history (1 event)

new → available17d ago · risk review · score 33 · status changed

Evidence

Static findings

2321 static · 0 from release diff · showing high-signal first.

Severity	Kind	Path	Detail	Points
high	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amplify/webhook.py	matched ".aws"	30
high	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/codebuild/webhook.py	matched ".aws"	30
high	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/codepipeline/webhook.py	matched ".aws"	30
medium	Remote Payload	pulumi_aws-7.32.0a1779871574/pulumi_aws/kinesis/_inputs.py	matched "curl "	12
medium	Remote Payload	pulumi_aws-7.32.0a1779871574/pulumi_aws/kinesis/outputs.py	matched "curl "	12
medium	Remote Payload	pulumi_aws-7.32.0a1779871574/pulumi_aws/ssm/association.py	matched "curl "	12

Show all 2321 findings (low-signal and informational)

Showing 60 of 2321 findings.

Severity	Kind	Path	Detail	Points
high	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amplify/webhook.py	matched ".aws"	30
high	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/codebuild/webhook.py	matched ".aws"	30
high	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/codepipeline/webhook.py	matched ".aws"	30
medium	Remote Payload	pulumi_aws-7.32.0a1779871574/pulumi_aws/kinesis/_inputs.py	matched "curl "	12
medium	Remote Payload	pulumi_aws-7.32.0a1779871574/pulumi_aws/kinesis/outputs.py	matched "curl "	12
medium	Remote Payload	pulumi_aws-7.32.0a1779871574/pulumi_aws/ssm/association.py	matched "curl "	12
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/_inputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/accessanalyzer/_inputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/accessanalyzer/analyzer.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/accessanalyzer/archive_rule.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/accessanalyzer/outputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acm/_inputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acm/certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acm/certificate_validation.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acm/get_certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acm/outputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/_inputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/certificate_authority.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/certificate_authority_certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/get_certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/get_certificate_authority.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/outputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/permission.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/acmpca/policy.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/get_listener.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/get_load_balancer.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/get_target_group.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/listener.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/listener_certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/listener_rule.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/load_balancer.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/target_group.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/alb/target_group_attachment.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/alert_manager_definition.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/get_default_scraper_configuration.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/get_workspace.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/get_workspaces.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/query_logging_configuration.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/resource_policy.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/rule_group_namespace.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/scraper.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/workspace.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amp/workspace_configuration.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amplify/app.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amplify/backend_environment.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amplify/branch.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/amplify/domain_association.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/_inputs.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/account.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/api_key.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/authorizer.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/base_path_mapping.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/client_certificate.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/deployment.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/documentation_part.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/documentation_version.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/domain_name.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/domain_name_access_association.py	matched ".aws"	5
low	Credential file access	pulumi_aws-7.32.0a1779871574/pulumi_aws/apigateway/get_api_keys.py	matched ".aws"	5