PkgRadar

PyPI · pypi.org

dsps

Remote Payload: matched "wget "

Why PkgRadar flagged 0.4.8

SeveritySignalEvidence
mediumRemote Payloadmatched "wget " · dsps-0.4.8/.github/workflows/tests.yaml

Scanned versions

VersionVerdictScoreScanned (UTC)
0.4.8Review82026-05-26

Block this in CI

PkgRadar gates dsps (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi dsps==0.4.8
Start free — 25 scans / moView full evidence