PkgRadar

PyPI · pypi.org

mineru

Py Import Time Eval Exec: Python eval()/exec() called on a string.

Why PkgRadar flagged 3.3.1

SeveritySignalEvidence
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · mineru/model/utils/pytorchocr/data/imaug/__init__.py
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · mineru/model/utils/pytorchocr/modeling/backbones/__init__.py
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · mineru/model/utils/pytorchocr/modeling/heads/__init__.py
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · mineru/model/utils/pytorchocr/modeling/necks/__init__.py
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · mineru/model/utils/pytorchocr/postprocess/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
3.3.1Review382026-06-11
3.3.0Review382026-06-11
3.2.3Review382026-06-04
3.2.2Review382026-06-02
3.2.1Review382026-05-28

Block this in CI

PkgRadar gates mineru (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi mineru==3.3.1
Start free — 25 scans / moView full evidence