PyPI · pypi.org
featrixsphere
Remote Payload: matched "wget "
Why PkgRadar flagged 0.2.10624
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "wget " · featrixsphere-0.2.10624/nv-install.sh |
| medium | Remote Payload | matched "wget " · featrixsphere-0.2.10624/src/lib/featrix/download-data/install-data.sh |
| medium | Remote Payload | matched "curl " · featrixsphere-0.2.10624/src/node-install.sh |
| medium | Remote Payload | matched "curl " · featrixsphere-0.2.10624/src/production_server/gateway_watchdog.sh |
| medium | Remote Payload | matched "curl " · featrixsphere-0.2.10624/src/production_server/install.sh |
| medium | Remote Payload | matched "curl " · featrixsphere-0.2.10624/src/quick_test_deployment.sh |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.2.10624 | High risk | 64 | 2026-06-09 |
Block this in CI
pkgradar gate --ecosystem pypi featrixsphere==0.2.10624