PkgRadar

PyPI · pypi.org

plonecli

Remote Payload: matched "curl "

Why PkgRadar flagged 7.0.0b11

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · plonecli-7.0.0b11/.devcontainer/init-firewall.sh
mediumRemote Payloadmatched "curl " · plonecli-7.0.0b11/.devcontainer/setup-claude.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
7.0.0b11Review122026-05-27

Block this in CI

PkgRadar gates plonecli (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi plonecli==7.0.0b11
Start free — 25 scans / moView full evidence