PkgRadar

PyPI · pypi.org

esentity

Webhook Exfil Endpoint: matched "api.telegram.org/bot"

Why PkgRadar flagged 0.2.292

SeveritySignalEvidence
highWebhook Exfil Endpointmatched "api.telegram.org/bot" · esentity-0.2.292/esentity/telegram.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.2.292High risk252026-06-12
0.2.291High risk252026-06-12
0.2.290High risk252026-06-01
0.2.289High risk252026-06-01
0.2.288High risk252026-06-01

Block this in CI

PkgRadar gates esentity (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi esentity==0.2.292
Start free — 25 scans / moView full evidence