PyPI · pypi.org
aibrain
Webhook Exfil Endpoint: matched "requestbin.com"
Why PkgRadar flagged 1.8.7
| Severity | Signal | Evidence |
|---|---|---|
| high | Webhook Exfil Endpoint | matched "requestbin.com" · aibrain/core/the_hands.py |
| medium | Py Import Time Subprocess | subprocess call — process spawning. · aibrain/tools/compress/__init__.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · mcp_peer_discovery.py |
| high | Py Runtime Dynamic Dangerous Import | Dynamic __import__('sys') — reflection bypass for static checks. · mcp_server.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · aibrain/lucy_agent.py |
| high | Py Runtime Dynamic Dangerous Import | Dynamic __import__('os') — reflection bypass for static checks. · aibrain/core/watchdog.py |
| medium | Remote Payload | matched "curl " · aibrain_networking.py |
| medium | Credential file access | matched "AWS_ACCESS_KEY" · aibrain/core/the_hands.py |
| medium | Credential file access | matched ".ssh/" · aibrain/tools/builtin.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.8.7 | High risk | 284 | 2026-06-01 |
Block this in CI
pkgradar gate --ecosystem pypi aibrain==1.8.7