PkgRadar

PyPI · pypi.org

governance-core

Py Import Time Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 0.27.0

SeveritySignalEvidence
mediumPy Import Time Subprocesssubprocess call — process spawning. · governance_core-0.27.0/governance_core/discovery/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.27.0Review372026-06-12
0.26.0Review372026-06-12
0.25.0Review372026-06-03
0.24.0Review372026-06-02
0.23.0Review372026-06-02
0.9.0Review372026-05-30
0.8.0Review372026-05-30
0.20.0Review372026-05-29
0.17.0Review372026-05-29

Block this in CI

PkgRadar gates governance-core (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi governance-core==0.27.0
Start free — 25 scans / moView full evidence