PkgRadar

PyPI · pypi.org

kata-cli

Py Runtime Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 0.12.0

SeveritySignalEvidence
mediumPy Runtime Subprocesssubprocess call — process spawning. · kata_cli-0.12.0/experiments/scripts_eval/manifest.py
mediumRemote Payloadmatched "curl " · kata_cli-0.12.0/.claude/skills/cicd/scripts/pr-status.sh
mediumRemote Payloadmatched "curl " · kata_cli-0.12.0/.claude/skills/sonarclaude/scripts/sonar.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
0.12.0Review442026-05-26

Block this in CI

PkgRadar gates kata-cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi kata-cli==0.12.0
Start free — 25 scans / moView full evidence