PkgRadar

PyPI · pypi.org

amd-gaia

Webhook Exfil Endpoint: matched "ngrok-free.app"

Why PkgRadar flagged 0.21.0

SeveritySignalEvidence
highWebhook Exfil Endpointmatched "ngrok-free.app" · amd_gaia-0.21.0/src/gaia/apps/webui/dist/assets/index-DmVbNLtH.js
highPy Runtime Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · amd_gaia-0.21.0/src/gaia/cli.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.21.0High risk802026-06-12
0.20.1High risk802026-06-10
0.20.0High risk802026-06-03

Block this in CI

PkgRadar gates amd-gaia (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi amd-gaia==0.21.0
Start free — 25 scans / moView full evidence