PkgRadar

PyPI · pypi.org

dbt-ci

Py Import Time Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 1.4.0

SeveritySignalEvidence
mediumPy Import Time Subprocesssubprocess call — process spawning. · dbt_ci-1.4.0/dbt_ci/runners/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.4.0Review412026-06-09
1.3.11Review412026-06-09
1.3.10Review412026-06-09
1.3.9Review412026-06-09
1.3.8Review412026-06-09
1.3.7Review412026-06-09
1.3.6Review412026-06-09

Block this in CI

PkgRadar gates dbt-ci (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi dbt-ci==1.4.0
Start free — 25 scans / moView full evidence
dbt-ci — PyPI security scan | PkgRadar