PyPI · pypi.org

ethos-u-vela

Py Install Time Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 5.1.0

Severity	Signal	Evidence
medium	Py Install Time Subprocess	subprocess call — process spawning. · ethos_u_vela-5.1.0/ethosu/regor/dependencies/thirdparty/pybind11/setup.py
medium	Py Install Time Subprocess	subprocess call — process spawning. · ethos_u_vela-5.1.0/setup.py
medium	Py Install Time Eval Exec	Python eval()/exec() called on a string. · ethos_u_vela-5.1.0/ethosu/regor/dependencies/thirdparty/pybind11/setup.py

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`5.1.0`	Review	47	2026-06-04

Block this in CI

PkgRadar gates ethos-u-vela (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi ethos-u-vela==5.1.0