PkgRadar

PyPI · pypi.org

debsb

Py Runtime Dynamic Dangerous Import: Dynamic __import__('sys') — reflection bypass for static checks.

Why PkgRadar flagged 0.2.3

SeveritySignalEvidence
highPy Runtime Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · debsb-0.2.3/src/debsb/debian.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.2.3High risk302026-06-08
0.2.2High risk302026-06-07
0.2.1High risk302026-06-07
0.2.0High risk302026-06-07
0.1.2Low risk02026-06-03
0.1.1Low risk02026-06-02
0.1.0Low risk02026-06-02

Block this in CI

PkgRadar gates debsb (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi debsb==0.2.3
Start free — 25 scans / moView full evidence