PkgRadar

PyPI · pypi.org

is-crawler

DNS / OAST exfiltration: matched "burpcollaborator.net"

Why PkgRadar flagged 1.5.24

SeveritySignalEvidence
highDNS / OAST exfiltrationmatched "burpcollaborator.net" · is_crawler-1.5.24/is_crawler/crawlers.min.json

Scanned versions

VersionVerdictScoreScanned (UTC)
1.5.24High risk302026-06-08
1.5.23High risk302026-06-07
1.5.22High risk302026-06-07
1.5.21High risk302026-06-07

Block this in CI

PkgRadar gates is-crawler (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi is-crawler==1.5.24
Start free — 25 scans / moView full evidence