PkgRadar

PyPI · pypi.org

oehrpy

Remote Payload: matched "curl "

Why PkgRadar flagged 0.15.0

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · oehrpy-0.15.0/fetch_webtemplate_from_ci.sh
mediumRemote Payloadmatched "curl " · oehrpy-0.15.0/test_flat_submission.sh
mediumRemote Payloadmatched "curl " · oehrpy-0.15.0/test_web_template.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
0.15.0High risk362026-06-03
0.14.1High risk362026-06-01
0.14.0High risk362026-06-01
0.13.0High risk362026-05-31
0.12.0High risk362026-05-31
0.11.0High risk362026-05-31
0.10.0High risk362026-05-31

Block this in CI

PkgRadar gates oehrpy (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi oehrpy==0.15.0
Start free — 25 scans / moView full evidence
oehrpy — PyPI security scan | PkgRadar