PkgRadar

PyPI · pypi.org

mlflow

Py Import Time Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 3.14.0

SeveritySignalEvidence
mediumPy Import Time Subprocesssubprocess call — process spawning. · mlflow-3.14.0/mlflow/sagemaker/__init__.py
mediumPy Import Time Pickle Loadspickle/marshal.loads — deserializes arbitrary objects, RCE if attacker-controlled. · mlflow-3.14.0/mlflow/pmdarima/__init__.py
mediumPy Import Time Pickle Loadspickle/marshal.loads — deserializes arbitrary objects, RCE if attacker-controlled. · mlflow-3.14.0/mlflow/sklearn/__init__.py
highPy Import Time Network CallNetwork call (urllib/requests/httpx/http.client) at install or import time. · mlflow-3.14.0/mlflow/assistant/providers/__init__.py
highPy Import Time Network CallNetwork call (urllib/requests/httpx/http.client) at install or import time. · mlflow-3.14.0/mlflow/deployments/openai/__init__.py
mediumCredential file accessmatched "aws_access_key" · mlflow-3.14.0/mlflow/metrics/genai/model_utils.py
mediumCredential file accessmatched "AWS_SECRET_ACCESS_KEY" · mlflow-3.14.0/mlflow/projects/backend/local.py
mediumCredential file accessmatched ".ssh/" · mlflow-3.14.0/mlflow/store/artifact/sftp_artifact_repo.py

Scanned versions

VersionVerdictScoreScanned (UTC)
3.14.0Review562026-06-17
3.13.0Review562026-06-01

Block this in CI

PkgRadar gates mlflow (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi mlflow==3.14.0
Start free — 25 scans / moView full evidence