Composer · packagist.org

b7s/fluentvision

Remote Payload: matched "github.com/ultralytics/assets/releases/download"

Why PkgRadar flagged v1.0.00

Severity	Signal	Evidence
medium	Remote Payload	matched "github.com/ultralytics/assets/releases/download" · b7s-fluentvision-2ca0b8c/src/Console/Commands/InstallCommand.php
medium	Remote Payload	matched "github.com/RangiLyu/nanodet/releases/download" · b7s-fluentvision-2ca0b8c/src/Enums/NanodetModel.php
medium	Remote Payload	matched "github.com/ultralytics/assets/releases/download" · b7s-fluentvision-2ca0b8c/src/Enums/YoloModel.php

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`v1.0.00`	High risk	36	2026-06-01

Block this in CI

PkgRadar gates b7s/fluentvision (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem composer b7s/[email protected]