PkgRadar

PyPI · pypi.org

dcc-mcp-core

Credential File Packaged: dcc_mcp_core-0.18.21/admin-ui/.npmrc

Why PkgRadar flagged 0.18.21

SeveritySignalEvidence
highCredential File Packageddcc_mcp_core-0.18.21/admin-ui/.npmrc · dcc_mcp_core-0.18.21/admin-ui/.npmrc
highPy Runtime Dynamic Dangerous ImportDynamic __import__('os') — reflection bypass for static checks. · dcc_mcp_core-0.18.21/scripts/vrs_replay.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.18.21High risk322026-06-12
0.18.20High risk322026-06-11
0.18.19High risk322026-06-11
0.18.17High risk322026-06-10
0.18.15High risk322026-06-08
0.18.14High risk322026-06-08
0.18.13High risk322026-06-08
0.18.11High risk322026-06-08
0.18.12High risk322026-06-08
0.18.10High risk322026-06-07
0.18.9High risk322026-06-07
0.18.8High risk322026-06-07
0.18.7High risk322026-06-06
0.18.6High risk322026-06-06
0.18.5High risk322026-06-06
0.18.4High risk322026-06-06
0.18.3High risk322026-06-06
0.18.2High risk322026-06-05
0.18.1High risk322026-06-05
0.18.0High risk322026-06-05
0.17.56High risk322026-06-04
0.17.55High risk322026-06-04
0.17.54High risk322026-06-04
0.17.53High risk322026-06-04
0.17.51High risk322026-06-03
0.17.50High risk322026-06-02
0.17.49High risk322026-05-31
0.17.48High risk322026-05-31
0.17.47High risk322026-05-30
0.17.38High risk322026-05-30
0.17.37High risk322026-05-30

Block this in CI

PkgRadar gates dcc-mcp-core (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi dcc-mcp-core==0.18.21
Start free — 25 scans / moView full evidence