PyPI · pypi.org

conduct-cli

Python Bun Js Exec: Python file references the Bun JavaScript runtime — cross-language execution

Why PkgRadar flagged 0.4.92

Severity	Signal	Evidence
high	Python Bun Js Exec	Python file references the Bun JavaScript runtime — cross-language execution · conduct_cli-0.4.92/src/conduct_cli/paxel.py

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.4.92`	High risk	40	2026-06-11
`0.4.91`	High risk	40	2026-06-10
`0.4.90`	High risk	40	2026-06-10
`0.4.89`	High risk	40	2026-06-10
`0.4.88`	Low risk	0	2026-06-10
`0.4.87`	Low risk	0	2026-06-10
`0.4.86`	Low risk	0	2026-06-10
`0.4.85`	Low risk	0	2026-06-10
`0.4.84`	Low risk	0	2026-06-10
`0.4.83`	Low risk	0	2026-06-10
`0.4.82`	Low risk	0	2026-06-10
`0.4.81`	Low risk	0	2026-06-10
`0.4.80`	Low risk	0	2026-06-10
`0.4.79`	Low risk	0	2026-06-10
`0.4.78`	Low risk	0	2026-06-10
`0.4.77`	Low risk	0	2026-06-10
`0.4.76`	Low risk	0	2026-06-10
`0.4.75`	Low risk	0	2026-06-10
`0.4.74`	Low risk	0	2026-06-10
`0.4.73`	Low risk	0	2026-06-10
`0.4.72`	Low risk	0	2026-06-10
`0.4.71`	Low risk	0	2026-06-10
`0.4.70`	Low risk	0	2026-06-09
`0.4.69`	Low risk	0	2026-06-09
`0.4.68`	Low risk	0	2026-06-09
`0.4.67`	Low risk	0	2026-06-08
`0.4.66`	Low risk	0	2026-06-08
`0.4.65`	Low risk	0	2026-06-08
`0.4.64`	Low risk	0	2026-06-08
`0.4.63`	Low risk	0	2026-06-08
`0.4.62`	Low risk	0	2026-06-08
`0.4.61`	Low risk	0	2026-06-08
`0.4.60`	Low risk	0	2026-06-08
`0.4.59`	Low risk	0	2026-06-08
`0.4.58`	Low risk	0	2026-06-08
`0.4.57`	Low risk	0	2026-06-08
`0.4.56`	Low risk	0	2026-06-08
`0.4.55`	Low risk	0	2026-06-08
`0.4.54`	Low risk	0	2026-06-08
`0.4.53`	Low risk	0	2026-06-08
`0.4.48`	Low risk	0	2026-06-06
`0.4.47`	Low risk	0	2026-06-06
`0.4.46`	Low risk	0	2026-06-06
`0.4.45`	Low risk	0	2026-06-06
`0.4.44`	Low risk	0	2026-06-06
`0.4.43`	Low risk	0	2026-06-06
`0.4.42`	Low risk	0	2026-06-06
`0.4.41`	Low risk	0	2026-06-06
`0.4.40`	Low risk	0	2026-06-06
`0.4.38`	Low risk	0	2026-06-05
`0.4.37`	Low risk	0	2026-06-05
`0.4.36`	Low risk	0	2026-06-05
`0.4.35`	Low risk	0	2026-06-05
`0.4.34`	Low risk	0	2026-06-05
`0.4.33`	Low risk	0	2026-06-05
`0.4.32`	Low risk	0	2026-06-04
`0.4.31`	Low risk	0	2026-06-04
`0.4.30`	Low risk	0	2026-06-04
`0.4.29`	Low risk	0	2026-06-04
`0.4.28`	Low risk	0	2026-06-04
`0.4.27`	Low risk	0	2026-06-03
`0.4.26`	Low risk	0	2026-06-03
`0.4.25`	Low risk	0	2026-06-03
`0.4.24`	Low risk	0	2026-06-03
`0.4.23`	Low risk	0	2026-06-03
`0.4.22`	Low risk	0	2026-06-03
`0.4.21`	Low risk	0	2026-06-03
`0.4.20`	Low risk	0	2026-06-03
`0.4.19`	Low risk	0	2026-06-03
`0.4.18`	Low risk	0	2026-06-03
`0.4.17`	Low risk	0	2026-06-03
`0.4.16`	Low risk	0	2026-06-03
`0.4.15`	Low risk	0	2026-06-02
`0.4.14`	Low risk	0	2026-06-02
`0.4.13`	Low risk	0	2026-06-02
`0.4.12`	Low risk	0	2026-06-02
`0.4.11`	Low risk	0	2026-06-02
`0.4.10`	Low risk	0	2026-06-02
`0.4.9`	Low risk	0	2026-06-02
`0.4.8`	Low risk	0	2026-06-02
`0.4.7`	Low risk	0	2026-06-02
`0.4.6`	Low risk	0	2026-06-02
`0.4.5`	Low risk	0	2026-06-02
`0.4.4`	Low risk	0	2026-06-02
`0.4.3`	Low risk	0	2026-06-02
`0.4.2`	Low risk	0	2026-06-02
`0.2.0`	Low risk	0	2026-05-31

Block this in CI

PkgRadar gates conduct-cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi conduct-cli==0.4.92

Start free — 25 scans / mo View full evidence