PkgRadar

PyPI · pypi.org

astreum

Py Install Time Raw Socket: Raw socket creation at install or import time.

Why PkgRadar flagged 0.4.31

SeveritySignalEvidence
highPy Install Time Raw SocketRaw socket creation at install or import time. · astreum-0.4.31/src/astreum/communication/setup.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.4.31High risk152026-06-13
0.4.30High risk152026-06-12
0.4.29High risk152026-06-12
0.4.28High risk152026-06-12
0.4.27High risk152026-06-11
0.4.26High risk152026-06-10
0.4.25High risk152026-06-09
0.4.24High risk152026-06-09
0.4.23High risk152026-06-09
0.4.22High risk152026-06-09
0.4.21High risk152026-06-09
0.4.20High risk152026-06-09
0.4.19High risk152026-06-09
0.4.18High risk152026-06-09
0.4.17High risk152026-06-09
0.4.16High risk152026-06-09
0.4.15High risk152026-06-07
0.4.14High risk152026-06-07
0.4.13High risk152026-06-07
0.4.12High risk152026-06-07
0.4.11High risk152026-06-05
0.4.10High risk152026-06-03
0.4.9High risk152026-06-03
0.4.8High risk152026-06-03
0.4.7High risk152026-06-03
0.4.6High risk152026-06-01
0.4.5High risk152026-06-01
0.4.4High risk152026-06-01
0.4.3High risk152026-06-01
0.4.2High risk152026-06-01
0.4.1High risk152026-05-31
0.4.0High risk152026-05-31

Block this in CI

PkgRadar gates astreum (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi astreum==0.4.31
Start free — 25 scans / moView full evidence