PyPI · pypi.org
kumoai
Remote Payload: matched "curl "
Why PkgRadar flagged 2.23.0.dev202605271834
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · kumoai/client/client.py |
| medium | Remote Payload | matched "raw.githubusercontent.com" · kumoai/rfm/relbench.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
2.23.0.dev202606121843 | Low risk | 0 | 2026-06-13 |
2.23.0.dev202606111848 | Low risk | 0 | 2026-06-12 |
2.23.0.dev202606101849 | Low risk | 0 | 2026-06-11 |
2.23.0.dev202606091843 | Low risk | 0 | 2026-06-10 |
2.23.0.dev202606081837 | Low risk | 0 | 2026-06-09 |
2.23.0.dev202606071847 | Low risk | 0 | 2026-06-08 |
2.23.0.dev202606061844 | Low risk | 0 | 2026-06-07 |
2.23.0.dev202606051838 | Low risk | 0 | 2026-06-06 |
2.23.0.dev202606041843 | Low risk | 0 | 2026-06-05 |
2.23.0.dev202606031853 | Low risk | 0 | 2026-06-04 |
2.23.0.dev202606021854 | Low risk | 0 | 2026-06-03 |
2.23.0.dev202606011849 | Low risk | 0 | 2026-06-02 |
2.23.0.dev202605311846 | Low risk | 0 | 2026-06-01 |
2.23.0.dev202605301842 | Low risk | 0 | 2026-05-31 |
2.23.0.dev202605291836 | Low risk | 0 | 2026-05-30 |
2.23.0.dev202605281839 | Low risk | 0 | 2026-05-29 |
2.23.0.dev202605271834 | Review | 14 | 2026-05-28 |
2.23.0.dev202605261842 | Review | 14 | 2026-05-27 |
Block this in CI
pkgradar gate --ecosystem pypi kumoai==2.23.0.dev202605271834