PkgRadar

PyPI · pypi.org

dagster-dbt

Remote Payload: matched "curl\n"

Why PkgRadar flagged 0.29.9

SeveritySignalEvidence
mediumRemote Payloadmatched "curl\n" · dagster_dbt-0.29.9/dagster_dbt_tests/install_dbt_fusion.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
0.29.9Review142026-06-11
0.29.8Review142026-06-04
0.29.7Review152026-05-28

Block this in CI

PkgRadar gates dagster-dbt (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi dagster-dbt==0.29.9
Start free — 25 scans / moView full evidence