PkgRadar

PyPI · pypi.org

darwin-agentic-cloud

Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Why PkgRadar flagged 3.0.4

SeveritySignalEvidence
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · darwin_agentic_cloud-3.0.4/infra/aws_runner/batch_deploy.py
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · darwin_agentic_cloud-3.0.4/infra/aws_runner/batch_runner.py
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · darwin_agentic_cloud-3.0.4/infra/aws_runner/deploy.py
mediumCredential file accessmatched "AWS_ACCESS_KEY" · darwin_agentic_cloud-3.0.4/darwin/agenticcloud/router.py

Scanned versions

VersionVerdictScoreScanned (UTC)
3.0.4High risk702026-05-30
3.0.3High risk702026-05-30
3.0.2High risk702026-05-30
3.0.1High risk702026-05-30
3.0.0High risk702026-05-30

Block this in CI

PkgRadar gates darwin-agentic-cloud (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi darwin-agentic-cloud==3.0.4
Start free — 25 scans / moView full evidence