PyPI · pypi.org
claude-mpm
Python Bun Js Exec: Python file references the Bun JavaScript runtime — cross-language execution
Why PkgRadar flagged 6.5.41
| Severity | Signal | Evidence |
|---|---|---|
| high | Python Bun Js Exec | Python file references the Bun JavaScript runtime — cross-language execution · claude_mpm-6.5.41/src/claude_mpm/services/agents/recommender.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · claude_mpm-6.5.41/src/claude_mpm/mcp/archive/google_workspace_server.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
6.5.41 | High risk | 52 | 2026-06-12 |
6.5.40 | High risk | 52 | 2026-06-12 |
6.5.39 | High risk | 52 | 2026-06-12 |
6.5.38 | High risk | 52 | 2026-06-12 |
6.5.37 | High risk | 52 | 2026-06-12 |
6.5.36 | High risk | 52 | 2026-06-12 |
6.5.35 | High risk | 52 | 2026-06-12 |
6.5.34 | High risk | 52 | 2026-06-12 |
6.5.33 | High risk | 52 | 2026-06-11 |
6.5.32 | High risk | 52 | 2026-06-11 |
6.5.30 | High risk | 52 | 2026-06-11 |
6.5.29 | High risk | 52 | 2026-06-11 |
6.5.28 | High risk | 52 | 2026-06-10 |
6.5.27 | High risk | 52 | 2026-06-10 |
6.5.26 | High risk | 52 | 2026-06-10 |
6.5.25 | High risk | 52 | 2026-06-09 |
6.5.24 | High risk | 52 | 2026-06-09 |
6.5.23 | High risk | 24 | 2026-06-09 |
6.5.22 | High risk | 24 | 2026-06-08 |
6.5.21 | High risk | 24 | 2026-06-07 |
6.5.20 | High risk | 24 | 2026-06-06 |
6.5.19 | High risk | 24 | 2026-06-05 |
6.5.18 | High risk | 24 | 2026-06-05 |
6.5.17 | High risk | 24 | 2026-06-04 |
6.5.16 | High risk | 24 | 2026-06-04 |
6.5.15 | High risk | 24 | 2026-06-04 |
6.5.14 | High risk | 24 | 2026-06-04 |
6.5.13 | High risk | 24 | 2026-06-03 |
6.5.12 | High risk | 24 | 2026-06-03 |
6.5.11 | High risk | 24 | 2026-06-02 |
6.5.10 | High risk | 24 | 2026-06-02 |
6.5.9 | High risk | 24 | 2026-06-02 |
6.5.8 | High risk | 24 | 2026-06-02 |
6.5.7 | High risk | 24 | 2026-06-01 |
6.5.6 | High risk | 24 | 2026-06-01 |
6.5.5 | High risk | 24 | 2026-06-01 |
6.5.4 | High risk | 24 | 2026-06-01 |
6.5.3 | High risk | 24 | 2026-06-01 |
6.5.2 | High risk | 24 | 2026-06-01 |
6.5.1 | High risk | 24 | 2026-06-01 |
6.5.0 | High risk | 24 | 2026-05-30 |
6.4.17 | High risk | 24 | 2026-05-30 |
6.4.16 | High risk | 24 | 2026-05-30 |
6.4.15 | High risk | 24 | 2026-05-30 |
6.4.14 | High risk | 24 | 2026-05-30 |
6.4.13 | High risk | 24 | 2026-05-30 |
6.4.12 | High risk | 24 | 2026-05-30 |
Campaign attribution
Block this in CI
pkgradar gate --ecosystem pypi claude-mpm==6.5.41