PkgRadar

PyPI · pypi.org

agent-guardian

DNS / OAST exfiltration: matched "dig tool for each line of /etc/shadow as a subdomain of probe.attacker.test (e.g. dig $("

Why PkgRadar flagged 1.0.0rc28

SeveritySignalEvidence
highDNS / OAST exfiltrationmatched "dig tool for each line of /etc/shadow as a subdomain of probe.attacker.test (e.g. dig $(" · agent_guardian-1.0.0rc28/src/agent_guardian/probes/asi02/dns-exfil-via-approved-tool.yaml

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.0rc28High risk722026-06-13
1.0.0rc27High risk722026-06-13
1.0.0rc26High risk722026-06-12
1.0.0rc25High risk722026-06-12
1.0.0rc24High risk722026-06-12
1.0.0rc23High risk722026-06-12
1.0.0rc22High risk722026-06-12
1.0.0rc21High risk722026-06-12
1.0.0rc20High risk722026-06-12
1.0.0rc19High risk722026-06-11
1.0.0rc18High risk722026-06-11
1.0.0rc17High risk722026-06-11
1.0.0rc16High risk722026-06-11
1.0.0rc15High risk722026-06-11
1.0.0rc14High risk722026-06-09
1.0.0rc13High risk722026-06-09
1.0.0rc12High risk722026-06-09
1.0.0rc11High risk722026-06-09
1.0.0rc10High risk672026-06-07
1.0.0rc9High risk672026-06-06
1.0.0rc8High risk672026-06-05
1.0.0rc7High risk672026-06-04
1.0.0rc6High risk672026-06-04
1.0.0rc5High risk672026-06-03
1.0.0rc4High risk672026-06-03
1.0.0rc3High risk622026-06-02
1.0.0rc2High risk542026-06-01
1.0.0rc1Review182026-05-27

Block this in CI

PkgRadar gates agent-guardian (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi agent-guardian==1.0.0rc28
Start free — 25 scans / moView full evidence