PkgRadar

PyPI · pypi.org

pact-python-cli

Py Import Time Os System: Direct shell invocation via os.system / os.popen / os.exec*.

Why PkgRadar flagged 2.6.0.1

SeveritySignalEvidence
highPy Import Time Os SystemDirect shell invocation via os.system / os.popen / os.exec*. · pact_python_cli-2.6.0.1/pact_cli/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
2.6.0.1High risk502026-06-02

Block this in CI

PkgRadar gates pact-python-cli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi pact-python-cli==2.6.0.1
Start free — 25 scans / moView full evidence