PyPI · pypi.org
calkit-python
Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.
Why PkgRadar flagged 0.41.18
| Severity | Signal | Evidence |
|---|---|---|
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · calkit_python-0.41.18/calkit/core.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · calkit_python-0.41.18/calkit/cli/notebooks.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.41.18 | High risk | 25 | 2026-06-17 |
0.41.17 | High risk | 25 | 2026-06-15 |
0.41.16 | High risk | 25 | 2026-06-14 |
0.41.15 | High risk | 25 | 2026-06-13 |
0.41.14 | High risk | 25 | 2026-06-12 |
0.41.13 | High risk | 25 | 2026-06-10 |
0.41.12 | High risk | 25 | 2026-06-09 |
0.41.11 | High risk | 25 | 2026-06-08 |
0.41.10 | High risk | 25 | 2026-06-07 |
0.41.9 | High risk | 25 | 2026-06-03 |
0.41.8 | High risk | 25 | 2026-06-03 |
0.41.7 | High risk | 25 | 2026-06-02 |
0.41.6 | High risk | 25 | 2026-05-30 |
0.41.5 | High risk | 25 | 2026-05-30 |
0.41.4 | High risk | 25 | 2026-05-30 |
0.41.3 | High risk | 25 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem pypi calkit-python==0.41.18