PyPI · pypi.org
funasr
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged 1.3.7
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · funasr-1.3.7/runtime/deploy_tools/funasr-runtime-deploy-offline-cpu-en.sh |
| medium | Remote Payload | matched "raw.githubusercontent.com" · funasr-1.3.7/runtime/deploy_tools/funasr-runtime-deploy-offline-cpu-zh.sh |
| medium | Remote Payload | matched "raw.githubusercontent.com" · funasr-1.3.7/runtime/deploy_tools/funasr-runtime-deploy-online-cpu-zh.sh |
| medium | Remote Payload | matched "curl " · funasr-1.3.7/runtime/deploy_tools/install_docker.sh |
| medium | Remote Payload | matched "wget " · funasr-1.3.7/runtime/onnxruntime/third_party/download_ffmpeg.sh |
| medium | Remote Payload | matched "wget " · funasr-1.3.7/runtime/onnxruntime/third_party/download_onnxruntime.sh |
| medium | Remote Payload | matched "wget " · funasr-1.3.7/runtime/onnxruntime/third_party/openfst/_import_release.sh |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.3.7 | High risk | 42 | 2026-05-30 |
1.3.6 | High risk | 42 | 2026-05-30 |
1.3.5 | High risk | 42 | 2026-05-30 |
1.3.9 | Review | 42 | 2026-05-29 |
1.3.8 | Review | 42 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem pypi funasr==1.3.7