PkgRadar

PyPI · pypi.org

ai-slopgate

Python Bun Js Exec: Python file references the Bun JavaScript runtime — cross-language execution

Why PkgRadar flagged 1.2.3

SeveritySignalEvidence
highPython Bun Js ExecPython file references the Bun JavaScript runtime — cross-language execution · ai_slopgate-1.2.3/src/slopgate/installer/_opencode.py
highPython Bun Js ExecPython file references the Bun JavaScript runtime — cross-language execution · ai_slopgate-1.2.3/src/slopgate/search/opencode_scaffold.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.2.3High risk532026-06-10
1.2.2High risk532026-06-10
1.2.1High risk532026-06-10

Block this in CI

PkgRadar gates ai-slopgate (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi ai-slopgate==1.2.3
Start free — 25 scans / moView full evidence
ai-slopgate — PyPI security scan | PkgRadar