PkgRadar

PyPI · pypi.org

capesolo

Webhook Exfil Endpoint: matched "requestbin.net"

Why PkgRadar flagged 0.5.20

SeveritySignalEvidence
highWebhook Exfil Endpointmatched "requestbin.net" · capesolo-0.5.20/CAPEsolo/signatures/community/network_cnc_encrypted.py
highWebhook Exfil Endpointmatched "requestbin.net" · capesolo-0.5.20/CAPEsolo/signatures/community/network_dns_suspicious.py
mediumPy Custom Build BackendNon-standard PEP 517 build-backend `uv_build` — runs custom code at install time. · pyproject.toml

Scanned versions

VersionVerdictScoreScanned (UTC)
0.5.20High risk322026-06-01
0.5.19High risk322026-06-01

Block this in CI

PkgRadar gates capesolo (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi capesolo==0.5.20
Start free — 25 scans / moView full evidence