PkgRadar

PyPI · pypi.org

kaora-memory

Remote Payload: matched "curl "

Why PkgRadar flagged 0.1.2

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · kaora_memory-0.1.2/.claude/hooks/log-api-calls.sh
mediumRemote Payloadmatched "curl " · kaora_memory-0.1.2/template/.claude/hooks/log-api-calls.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.2Review242026-05-28
0.1.1Review242026-05-28

Block this in CI

PkgRadar gates kaora-memory (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi kaora-memory==0.1.2
Start free — 25 scans / moView full evidence