PkgRadar

PyPI · pypi.org

latex2arxiv

Py Runtime Dynamic Dangerous Import: Dynamic __import__('sys') — reflection bypass for static checks.

Why PkgRadar flagged 1.2.4

SeveritySignalEvidence
highPy Runtime Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · latex2arxiv-1.2.4/pipeline/bibtex.py
highPy Runtime Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · latex2arxiv-1.2.4/pipeline/config.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.2.4High risk502026-05-30
1.2.3High risk502026-05-30

Block this in CI

PkgRadar gates latex2arxiv (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi latex2arxiv==1.2.4
Start free — 25 scans / moView full evidence