PyPI · pypi.org
pdd-cli
Js Hidden Powershell: Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers.
Why PkgRadar flagged 0.0.276
| Severity | Signal | Evidence |
|---|---|---|
| high | Js Hidden Powershell | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. · pdd_cli-0.0.276/utils/vscode_prompt/out/pddInstaller.js |
| high | Js Hidden Powershell | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. · pdd_cli-0.0.276/utils/vscode_prompt/src/pddInstaller.ts |
| high | Python Bun Js Exec | Python file references the Bun JavaScript runtime — cross-language execution · pdd_cli-0.0.276/pdd/checkup_gates.py |
| medium | Py Import Time Subprocess | subprocess call — process spawning. · pdd_cli-0.0.276/pdd/__init__.py |
| high | Py Runtime Dynamic Dangerous Import | Dynamic __import__('os') — reflection bypass for static checks. · pdd_cli-0.0.276/context/server/routes/auth_example.py |
| high | Py Runtime Dynamic Dangerous Import | Dynamic __import__('sys') — reflection bypass for static checks. · pdd_cli-0.0.276/context/server/routes/auth_example.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · pdd_cli-0.0.276/pdd/get_jwt_token.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · pdd_cli-0.0.276/pdd/server/routes/files.py |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · pdd_cli-0.0.276/pdd/agentic_common.py |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · pdd_cli-0.0.276/pdd/cli_detector.py |
| medium | Credential file access | matched "aws_access_key" · pdd_cli-0.0.276/pdd/llm_invoke.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.0.276 | High risk | 150 | 2026-06-17 |
0.0.275 | High risk | 150 | 2026-06-16 |
0.0.274 | High risk | 150 | 2026-06-15 |
0.0.273 | High risk | 150 | 2026-06-13 |
0.0.272 | High risk | 150 | 2026-06-12 |
0.0.271 | High risk | 150 | 2026-06-12 |
0.0.270 | High risk | 150 | 2026-06-11 |
0.0.269 | High risk | 150 | 2026-06-10 |
0.0.268 | High risk | 150 | 2026-06-09 |
0.0.267 | High risk | 130 | 2026-06-09 |
0.0.266 | High risk | 130 | 2026-06-08 |
0.0.265 | High risk | 127 | 2026-06-07 |
0.0.264 | High risk | 127 | 2026-06-06 |
0.0.263 | High risk | 127 | 2026-06-05 |
0.0.262 | High risk | 127 | 2026-06-04 |
0.0.261 | High risk | 127 | 2026-06-03 |
0.0.258 | High risk | 125 | 2026-06-02 |
0.0.259 | High risk | 125 | 2026-06-02 |
0.0.260 | High risk | 125 | 2026-06-02 |
0.0.257 | High risk | 125 | 2026-06-01 |
0.0.256 | High risk | 125 | 2026-05-31 |
0.0.255 | High risk | 125 | 2026-05-30 |
0.0.254 | High risk | 125 | 2026-05-30 |
0.0.253 | High risk | 125 | 2026-05-30 |
0.0.252 | High risk | 109 | 2026-05-30 |
Campaign attribution
Block this in CI
pkgradar gate --ecosystem pypi pdd-cli==0.0.276