PkgRadar

PyPI · pypi.org

caliper-ai

Remote Payload: matched "raw.githubusercontent.com"

Why PkgRadar flagged 0.0.72

SeveritySignalEvidence
mediumRemote Payloadmatched "raw.githubusercontent.com" · caliper_ai-0.0.72/src/caliper/pricing_catalog.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.88Low risk02026-05-31
0.0.87Low risk02026-05-31
0.0.86Low risk02026-05-31
0.0.85Low risk02026-05-30
0.0.84Low risk02026-05-30
0.0.61Low risk02026-05-30
0.0.60Low risk02026-05-30
0.0.83Low risk02026-05-29
0.0.82Low risk02026-05-29
0.0.81Low risk02026-05-29
0.0.80Low risk02026-05-29
0.0.79Low risk02026-05-29
0.0.77Low risk02026-05-28
0.0.76Low risk02026-05-28
0.0.75Low risk02026-05-28
0.0.73Low risk02026-05-28
0.0.72Review122026-05-28
0.0.71Review122026-05-28
0.0.70Review122026-05-28
0.0.69Review122026-05-28
0.0.68Review122026-05-28
0.0.67Review122026-05-27
0.0.66Review122026-05-27
0.0.65Review122026-05-27
0.0.64Review122026-05-27
0.0.63Review122026-05-27
0.0.62Review122026-05-27

Block this in CI

PkgRadar gates caliper-ai (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi caliper-ai==0.0.72
Start free — 25 scans / moView full evidence