PkgRadar

PyPI · pypi.org

envoxy

Py Import Time Eval Exec: Python eval()/exec() called on a string.

Why PkgRadar flagged 0.7.1

SeveritySignalEvidence
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · envoxy-0.7.1/src/envoxy/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.7.1Review72026-05-29
0.7.0Review162026-05-26

Block this in CI

PkgRadar gates envoxy (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi envoxy==0.7.1
Start free — 25 scans / moView full evidence