PkgRadar

PyPI · pypi.org

cccc-pair

Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Why PkgRadar flagged 0.4.26

SeveritySignalEvidence
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · cccc_pair-0.4.26/src/cccc/daemon/assistants/voice_secretary_service.py
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · cccc_pair-0.4.26/src/cccc/daemon/browser/projected_browser_runtime.py
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · cccc_pair-0.4.26/src/cccc/kernel/nomcp_sessions.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.4.26High risk382026-06-10
0.4.25High risk382026-06-04
0.4.24High risk382026-06-03
0.4.23High risk382026-06-01
0.4.22High risk382026-05-30

Block this in CI

PkgRadar gates cccc-pair (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi cccc-pair==0.4.26
Start free — 25 scans / moView full evidence