PyPI · pypi.org
openakita
Js Hidden Powershell: Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers.
Why PkgRadar flagged 1.27.21
| Severity | Signal | Evidence |
|---|---|---|
| high | Js Hidden Powershell | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. · openakita/docs_dist/assets/guide_installation.md.D2bhbmrR.js |
| high | Js Hidden Powershell | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. · openakita/docs_dist/assets/guide_quickstart.md.BHFTaB_P.js |
| medium | Py Import Time Subprocess | subprocess call — process spawning. · openakita/__init__.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.27.21 | High risk | 97 | 2026-06-13 |
1.27.20 | High risk | 97 | 2026-06-09 |
1.27.19 | High risk | 97 | 2026-06-05 |
1.27.18 | High risk | 97 | 2026-06-05 |
1.27.17 | High risk | 97 | 2026-06-04 |
1.27.16 | High risk | 97 | 2026-06-03 |
1.27.15 | High risk | 97 | 2026-06-02 |
1.27.14 | High risk | 97 | 2026-05-31 |
Block this in CI
pkgradar gate --ecosystem pypi openakita==1.27.21