PkgRadar

PyPI · pypi.org

pyadi-iio

Py Runtime Eval Exec: Python eval()/exec() called on a string.

Why PkgRadar flagged 0.0.21

SeveritySignalEvidence
mediumPy Runtime Eval ExecPython eval()/exec() called on a string. · pyadi_iio-0.0.21/adi/QuadMxFE_multi.py
mediumPy Runtime Eval ExecPython eval()/exec() called on a string. · pyadi_iio-0.0.21/adi/adrv9009_zu11eg_multi.py
mediumPy Runtime Eval ExecPython eval()/exec() called on a string. · pyadi_iio-0.0.21/adi/cn0554.py
mediumPy Runtime Pickle Loadspickle/marshal.loads — deserializes arbitrary objects, RCE if attacker-controlled. · pyadi_iio-0.0.21/adi/cn0566.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.21Review372026-05-26

Block this in CI

PkgRadar gates pyadi-iio (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi pyadi-iio==0.0.21
Start free — 25 scans / moView full evidence