PkgRadar

PyPI · pypi.org

gramforge

Remote Payload: matched "github.com/vprover/vampire/releases/download"

Why PkgRadar flagged 1.0.10

SeveritySignalEvidence
mediumRemote Payloadmatched "github.com/vprover/vampire/releases/download" · gramforge-1.0.10/src/gramforge/solver_utils/tptp.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.12Low risk02026-06-12
1.0.11Low risk02026-06-01
1.0.10Review122026-05-27

Block this in CI

PkgRadar gates gramforge (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi gramforge==1.0.10
Start free — 25 scans / moView full evidence