PyPI · pypi.org
feishu-bridge
Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.
Why PkgRadar flagged 2026.6.9.4
| Severity | Signal | Evidence |
|---|---|---|
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · feishu_bridge-2026.6.9.4/feishu_bridge/bg_supervisor.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
2026.6.9.4 | High risk | 30 | 2026-06-09 |
2026.6.9.3 | High risk | 30 | 2026-06-09 |
2026.6.9.1 | High risk | 30 | 2026-06-09 |
2026.6.9 | High risk | 30 | 2026-06-09 |
2026.6.2 | High risk | 30 | 2026-06-01 |
2026.6.1.1 | High risk | 30 | 2026-06-01 |
2026.6.1 | High risk | 30 | 2026-05-31 |
2026.5.31.9 | High risk | 30 | 2026-05-31 |
2026.5.31.8 | High risk | 30 | 2026-05-31 |
2026.5.31.7 | High risk | 30 | 2026-05-31 |
2026.5.31.6 | High risk | 30 | 2026-05-31 |
2026.5.31.5 | High risk | 30 | 2026-05-31 |
2026.5.31.4 | High risk | 30 | 2026-05-31 |
2026.5.31.3 | High risk | 30 | 2026-05-31 |
2026.5.31.2 | High risk | 30 | 2026-05-31 |
2026.5.31.1 | High risk | 30 | 2026-05-30 |
2026.5.31 | High risk | 30 | 2026-05-30 |
2026.5.30.4 | High risk | 30 | 2026-05-30 |
2026.5.30.3 | High risk | 30 | 2026-05-30 |
2026.5.30 | High risk | 30 | 2026-05-30 |
2026.5.29.5 | High risk | 30 | 2026-05-30 |
2026.5.29.4 | High risk | 30 | 2026-05-30 |
2026.5.29.3 | High risk | 30 | 2026-05-30 |
2026.5.29.1 | High risk | 30 | 2026-05-30 |
2026.5.29.2 | High risk | 30 | 2026-05-30 |
2026.5.29 | High risk | 30 | 2026-05-30 |
2026.5.28 | High risk | 30 | 2026-05-30 |
2026.5.27 | High risk | 30 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem pypi feishu-bridge==2026.6.9.4