PyPI · pypi.org

openrewrite

Py Runtime Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 8.84.0.dev20260526195758

Severity	Signal	Evidence
medium	Py Runtime Subprocess	subprocess call — process spawning. · openrewrite-8.84.0.dev20260526195758/src/rewrite/python/dependency_workspace.py
medium	Py Runtime Subprocess	subprocess call — process spawning. · openrewrite-8.84.0.dev20260526195758/src/rewrite/python/template/dependency_workspace.py
medium	Py Runtime Subprocess	subprocess call — process spawning. · openrewrite-8.84.0.dev20260526195758/src/rewrite/python/ty_client.py
medium	Py Runtime Subprocess	subprocess call — process spawning. · openrewrite-8.84.0.dev20260526195758/src/rewrite/rpc/java_rpc_client.py
medium	Py Runtime Subprocess	subprocess call — process spawning. · openrewrite-8.84.0.dev20260526195758/src/rewrite/rpc/server.py

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`8.85.0.dev20260612123045`	Low risk	0	2026-06-12
`8.85.0.dev20260612120727`	Low risk	0	2026-06-12
`8.85.0.dev20260612115255`	Low risk	0	2026-06-12
`8.85.0.dev20260612113547`	Low risk	0	2026-06-12
`8.85.0.dev20260612085313`	Low risk	0	2026-06-12
`8.85.0.dev20260612084100`	Low risk	0	2026-06-12
`8.85.0.dev20260612072053`	Low risk	0	2026-06-12
`8.85.0.dev20260612043028`	Low risk	0	2026-06-12
`8.85.0.dev20260612041500`	Low risk	0	2026-06-12
`8.85.0.dev20260611100820`	Low risk	0	2026-06-11
`8.85.0.dev20260611095337`	Low risk	0	2026-06-11
`8.85.0.dev20260611074739`	Low risk	0	2026-06-11
`8.85.0.dev20260611080145`	Low risk	0	2026-06-11
`8.85.0.dev20260611005556`	Low risk	0	2026-06-11
`8.85.0.dev20260610211406`	Low risk	0	2026-06-10
`8.84.8`	Low risk	0	2026-06-10
`8.85.0.dev20260610134219`	Low risk	0	2026-06-10
`8.85.0.dev20260610133558`	Low risk	0	2026-06-10
`8.85.0.dev20260610092100`	Low risk	0	2026-06-10
`8.85.0.dev20260610091153`	Low risk	0	2026-06-10
`8.85.0.dev20260610084518`	Low risk	0	2026-06-10
`8.85.0.dev20260610083534`	Low risk	0	2026-06-10
`8.85.0.dev20260610082507`	Low risk	0	2026-06-10
`8.84.7`	Low risk	0	2026-06-10
`8.85.0.dev20260610062626`	Low risk	0	2026-06-10
`8.85.0.dev20260609181743`	Low risk	0	2026-06-09
`8.85.0.dev20260609144902`	Low risk	0	2026-06-09
`8.85.0.dev20260609135520`	Low risk	0	2026-06-09
`8.85.0.dev20260609130503`	Low risk	0	2026-06-09
`8.84.6`	Low risk	0	2026-06-09
`8.85.0.dev20260609091820`	Low risk	0	2026-06-09
`8.85.0.dev20260609090251`	Low risk	0	2026-06-09
`8.85.0.dev20260609082122`	Low risk	0	2026-06-09
`8.85.0.dev20260609065653`	Low risk	0	2026-06-09
`8.85.0.dev20260608172512`	Low risk	0	2026-06-08
`8.84.5`	Low risk	0	2026-06-08
`8.85.0.dev20260608140455`	Low risk	0	2026-06-08
`8.85.0.dev20260608123008`	Low risk	0	2026-06-08
`8.85.0.dev20260608113157`	Low risk	0	2026-06-08
`8.85.0.dev20260607114720`	Low risk	0	2026-06-07
`8.85.0.dev20260607102754`	Low risk	0	2026-06-07
`8.85.0.dev20260607084503`	Low risk	0	2026-06-07
`8.85.0.dev20260607054935`	Low risk	0	2026-06-07
`8.84.4`	Low risk	0	2026-06-07
`8.85.0.dev20260606213728`	Low risk	0	2026-06-06
`8.85.0.dev20260606103033`	Low risk	0	2026-06-06
`8.84.3`	Low risk	0	2026-06-06
`8.85.0.dev20260606084202`	Low risk	0	2026-06-06
`8.85.0.dev20260606081848`	Low risk	0	2026-06-06
`8.85.0.dev20260606073946`	Low risk	0	2026-06-06
`8.85.0.dev20260606070102`	Low risk	0	2026-06-06
`8.85.0.dev20260606015908`	Low risk	0	2026-06-06
`8.84.2`	Low risk	0	2026-06-05
`8.85.0.dev20260605173529`	Low risk	0	2026-06-05
`8.85.0.dev20260605150834`	Low risk	0	2026-06-05
`8.85.0.dev20260605141140`	Low risk	0	2026-06-05
`8.85.0.dev20260605135127`	Low risk	0	2026-06-05
`8.85.0.dev20260605105216`	Low risk	0	2026-06-05
`8.85.0.dev20260605104637`	Low risk	0	2026-06-05
`8.85.0.dev20260605091030`	Low risk	0	2026-06-05
`8.84.1`	Low risk	0	2026-06-05
`8.85.0.dev20260604202614`	Low risk	0	2026-06-04
`8.85.0.dev20260604185203`	Low risk	0	2026-06-04
`8.85.0.dev20260604141043`	Low risk	0	2026-06-04
`8.85.0.dev20260604132053`	Low risk	0	2026-06-04
`8.85.0.dev20260604080234`	Low risk	0	2026-06-04
`8.85.0.dev20260604022333`	Low risk	0	2026-06-04
`8.85.0.dev20260604002344`	Low risk	0	2026-06-04
`8.85.0.dev20260603211029`	Low risk	0	2026-06-03
`8.85.0.dev20260603194315`	Low risk	0	2026-06-03
`8.85.0.dev20260603174654`	Low risk	0	2026-06-03
`8.85.0.dev20260603154338`	Low risk	0	2026-06-03
`8.85.0.dev20260603130810`	Low risk	0	2026-06-03
`8.84.0`	Low risk	0	2026-06-03
`8.84.0.dev20260603104950`	Low risk	0	2026-06-03
`8.84.0.dev20260603101048`	Low risk	0	2026-06-03
`8.84.0.dev20260603095127`	Low risk	0	2026-06-03
`8.84.0.dev20260603090704`	Low risk	0	2026-06-03
`8.84.0.dev20260603080812`	Low risk	0	2026-06-03
`8.84.0.dev20260602193926`	Low risk	0	2026-06-02
`8.84.0.dev20260602192252`	Low risk	0	2026-06-02
`8.84.0.dev20260602161110`	Low risk	0	2026-06-02
`8.84.0.dev20260602134323`	Low risk	0	2026-06-02
`8.83.7`	Low risk	0	2026-06-02
`8.84.0.dev20260602123518`	Low risk	0	2026-06-02
`8.84.0.dev20260602115823`	Low risk	0	2026-06-02
`8.83.6`	Low risk	0	2026-06-02
`8.84.0.dev20260602094643`	Low risk	0	2026-06-02
`8.84.0.dev20260602074128`	Low risk	0	2026-06-02
`8.84.0.dev20260602073014`	Low risk	0	2026-06-02
`8.84.0.dev20260602034157`	Low risk	0	2026-06-02
`8.84.0.dev20260601152011`	Low risk	0	2026-06-01
`8.84.0.dev20260601140123`	Low risk	0	2026-06-01
`8.84.0.dev20260601124422`	Low risk	0	2026-06-01
`8.84.0.dev20260601121323`	Low risk	0	2026-06-01
`8.84.0.dev20260601113513`	Low risk	0	2026-06-01
`8.84.0.dev20260601100431`	Low risk	0	2026-06-01
`8.84.0.dev20260601075852`	Low risk	0	2026-06-01
`8.84.0.dev20260601073330`	Low risk	0	2026-06-01
`8.84.0.dev20260601072542`	Low risk	0	2026-06-01
`8.84.0.dev20260601003020`	Low risk	0	2026-06-01
`8.83.5`	Low risk	0	2026-06-01
`8.84.0.dev20260529161623`	Low risk	0	2026-05-29
`8.84.0.dev20260529151645`	Low risk	0	2026-05-29
`8.84.0.dev20260529142912`	Low risk	0	2026-05-29
`8.84.0.dev20260529140902`	Low risk	0	2026-05-29
`8.84.0.dev20260529135640`	Low risk	0	2026-05-29
`8.84.0.dev20260529124656`	Low risk	0	2026-05-29
`8.84.0.dev20260529123832`	Low risk	0	2026-05-29
`8.84.0.dev20260529121348`	Low risk	0	2026-05-29
`8.84.0.dev20260529113023`	Low risk	0	2026-05-29
`8.84.0.dev20260529112214`	Low risk	0	2026-05-29
`8.84.0.dev20260529104934`	Low risk	0	2026-05-29
`8.84.0.dev20260529104114`	Low risk	0	2026-05-29
`8.84.0.dev20260529095353`	Low risk	0	2026-05-29
`8.84.0.dev20260529084331`	Low risk	0	2026-05-29
`8.84.0.dev20260529081108`	Low risk	0	2026-05-29
`8.84.0.dev20260529074340`	Low risk	0	2026-05-29
`8.84.0.dev20260529053501`	Low risk	0	2026-05-29
`8.84.0.dev20260529010414`	Low risk	0	2026-05-29
`8.84.0.dev20260528233347`	Low risk	0	2026-05-28
`8.84.0.dev20260528223108`	Low risk	0	2026-05-28
`8.84.0.dev20260528215808`	Low risk	0	2026-05-28
`8.84.0.dev20260528183749`	Low risk	0	2026-05-28
`8.84.0.dev20260528173031`	Low risk	0	2026-05-28
`8.84.0.dev20260528162641`	Low risk	0	2026-05-28
`8.83.4`	Low risk	0	2026-05-28
`8.84.0.dev20260528154827`	Low risk	0	2026-05-28
`8.84.0.dev20260528123227`	Low risk	0	2026-05-28
`8.84.0.dev20260528105955`	Low risk	0	2026-05-28
`8.84.0.dev20260528073217`	Low risk	0	2026-05-28
`8.84.0.dev20260528021831`	Low risk	0	2026-05-28
`8.83.3`	Low risk	0	2026-05-27
`8.84.0.dev20260527195933`	Low risk	0	2026-05-27
`8.84.0.dev20260527145257`	Low risk	0	2026-05-27
`8.84.0.dev20260527142837`	Low risk	0	2026-05-27
`8.84.0.dev20260527141633`	Low risk	0	2026-05-27
`8.84.0.dev20260527131008`	Low risk	0	2026-05-27
`8.84.0.dev20260527104843`	Low risk	0	2026-05-27
`8.84.0.dev20260527102041`	Low risk	0	2026-05-27
`8.84.0.dev20260527093341`	Low risk	0	2026-05-27
`8.84.0.dev20260527092857`	Low risk	0	2026-05-27
`8.84.0.dev20260527091653`	Low risk	0	2026-05-27
`8.84.0.dev20260527085900`	Low risk	0	2026-05-27
`8.84.0.dev20260527080322`	Low risk	0	2026-05-27
`8.84.0.dev20260527073802`	Low risk	0	2026-05-27
`8.84.0.dev20260526195758`	Review	25	2026-05-26

Block this in CI

PkgRadar gates openrewrite (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi openrewrite==8.84.0.dev20260526195758

Start free — 25 scans / mo View full evidence