PkgRadar

PyPI · pypi.org

axiom-os-lm

Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Why PkgRadar flagged 0.30.5

SeveritySignalEvidence
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · axiom_os_lm-0.30.5/src/axiom/extensions/builtins/scidisplay/compute.py
highPy Runtime Dynamic Dangerous ImportDynamic __import__('os') — reflection bypass for static checks. · axiom_os_lm-0.30.5/src/axiom/extensions/builtins/signals/extractors/voice.py
highPy Import Time Network CallNetwork call (urllib/requests/httpx/http.client) at install or import time. · axiom_os_lm-0.30.5/src/axiom/extensions/builtins/signals/extractors/docflow_providers/__init__.py
mediumRemote Payloadmatched "curl " · axiom_os_lm-0.30.5/src/axiom/extensions/builtins/signals/pgvector_store.py
mediumRemote Payloadmatched "curl\n " · axiom_os_lm-0.30.5/src/axiom/setup/infra.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.30.5High risk1102026-06-02
0.30.4High risk1102026-06-02
0.30.3High risk1102026-06-01
0.30.2High risk1102026-06-01
0.30.1High risk1102026-06-01
0.30.0High risk1102026-06-01
0.29.10High risk1102026-06-01
0.29.9High risk1102026-06-01
0.29.8High risk1102026-06-01
0.29.7High risk1102026-06-01
0.29.6High risk1102026-06-01
0.29.5High risk1102026-06-01
0.29.4High risk1102026-06-01
0.29.3High risk1102026-06-01
0.29.2High risk1102026-06-01
0.29.1High risk1102026-06-01
0.28.0High risk1102026-05-31
0.27.0High risk1102026-05-31
0.26.1High risk1102026-05-30
0.25.1High risk1102026-05-30
0.26.0High risk1102026-05-30
0.25.0High risk1102026-05-30
0.24.2High risk1102026-05-30
0.24.1High risk1102026-05-30
0.24.0High risk1102026-05-30
0.23.1High risk1102026-05-30
0.23.0High risk1102026-05-30
0.22.0High risk1102026-05-30
0.21.1High risk1102026-05-30
0.21.0High risk1102026-05-30

Block this in CI

PkgRadar gates axiom-os-lm (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi axiom-os-lm==0.30.5
Start free — 25 scans / moView full evidence