PkgRadar

PyPI · pypi.org

appthreat-chen

Remote Payload: matched "api.github.com/graphql"

Why PkgRadar flagged 2.5.22

SeveritySignalEvidence
mediumRemote Payloadmatched "api.github.com/graphql" · appthreat_chen-2.5.22/chenpy/source/ghsa.py

Scanned versions

VersionVerdictScoreScanned (UTC)
2.5.22Review82026-05-27
2.5.21Review82026-05-27

Block this in CI

PkgRadar gates appthreat-chen (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi appthreat-chen==2.5.22
Start free — 25 scans / moView full evidence