PkgRadar

PyPI · pypi.org

amazon-sagemaker-sql-editor

Webhook Exfil Endpoint: matched "ngrok.app"

Why PkgRadar flagged 0.2.5

SeveritySignalEvidence
highWebhook Exfil Endpointmatched "ngrok.app" · amazon_sagemaker_sql_editor-0.2.5/amazon_sagemaker_sql_editor/sql-language-server/node_modules/psl/data/rules.js
highWebhook Exfil Endpointmatched "ngrok.app" · amazon_sagemaker_sql_editor-0.2.5/amazon_sagemaker_sql_editor/sql-language-server/node_modules/psl/dist/psl.cjs
highWebhook Exfil Endpointmatched "ngrok.app" · amazon_sagemaker_sql_editor-0.2.5/amazon_sagemaker_sql_editor/sql-language-server/node_modules/psl/dist/psl.mjs
highWebhook Exfil Endpointmatched "ngrok.app" · amazon_sagemaker_sql_editor-0.2.5/amazon_sagemaker_sql_editor/sql-language-server/node_modules/psl/dist/psl.umd.cjs
mediumCredential file accessmatched "id_rsa" · amazon_sagemaker_sql_editor-0.2.5/amazon_sagemaker_sql_editor/sql-language-server/node_modules/node-ssh-forward/dist/Connection.js

Scanned versions

VersionVerdictScoreScanned (UTC)
0.2.5High risk372026-06-10

Block this in CI

PkgRadar gates amazon-sagemaker-sql-editor (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi amazon-sagemaker-sql-editor==0.2.5
Start free — 25 scans / moView full evidence