PkgRadar

PyPI · pypi.org

mnemon-memory

Py Install Time Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 0.7.7

SeveritySignalEvidence
mediumPy Install Time Subprocesssubprocess call — process spawning. · mnemon_memory-0.7.7/src/mnemon/setup.py
highPy Runtime Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · mnemon_memory-0.7.7/src/mnemon/mirror.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.7.7High risk802026-06-11
0.7.6High risk802026-06-11
0.7.5High risk802026-06-11
0.7.4High risk802026-06-10
0.7.3High risk802026-06-08
0.7.2High risk802026-06-08
0.7.1High risk802026-06-08
0.7.0High risk802026-06-08
0.7.0rc19High risk802026-06-07
0.7.0rc18High risk802026-06-07
0.7.0rc17High risk802026-06-07
0.7.0rc16High risk802026-06-07
0.7.0rc15High risk802026-06-07
0.7.0rc14High risk802026-06-07
0.7.0rc13High risk802026-06-07
0.7.0rc12High risk802026-06-07
0.7.0rc11High risk802026-06-07
0.7.0rc10High risk802026-06-07
0.7.0rc9High risk802026-06-07
0.7.0rc8High risk802026-06-04
0.7.0rc7High risk802026-06-04
0.7.0rc6High risk802026-05-30

Block this in CI

PkgRadar gates mnemon-memory (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi mnemon-memory==0.7.7
Start free — 25 scans / moView full evidence