PkgRadar

PyPI · pypi.org

pulumi-docker

Remote Payload: matched "curl "

Why PkgRadar flagged 5.1.0a1779865372

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · pulumi_docker-5.1.0a1779865372/pulumi_docker/_inputs.py
mediumRemote Payloadmatched "curl " · pulumi_docker-5.1.0a1779865372/pulumi_docker/outputs.py

Scanned versions

VersionVerdictScoreScanned (UTC)
5.1.0a1781075292Low risk02026-06-10
5.1.0a1780988269Low risk02026-06-09
5.1.0a1780902424Low risk02026-06-08
5.1.0a1780815782Low risk02026-06-07
5.1.0a1780728409Low risk02026-06-06
5.1.0a1780643052Low risk02026-06-05
5.1.0a1780556751Low risk02026-06-04
5.1.0a1780470608Low risk02026-06-03
5.1.0a1780438781Low risk02026-06-02
5.1.0a1780123483Low risk02026-05-30
5.1.0a1780007447Low risk02026-05-28
5.1.0a1779951634Low risk02026-05-28
5.1.0a1779865372Review72026-05-27
5.1.0a1779814885Review72026-05-26

Block this in CI

PkgRadar gates pulumi-docker (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi pulumi-docker==5.1.0a1779865372
Start free — 25 scans / moView full evidence