PyPI · pypi.org

pydevversions

DNS / OAST exfiltration: matched "dig\n version_cmd: [\"dig\", \"-v\"]\n categories: [\"network\"]\n\n - name: dnf\n categories: [\"package-manager\"]\n\n - name: docker\n categories: [\"devops\", \"containers\"]\n if: \"docker\"\n \n - name: docker-compose\n version_cmd: [\"docker\", \"compose\", \"version\"]\n path_cmd: [\"which\", \"docker\"]\n categories: [\"devops\", \"containers\"]\n\n - name: ds_agent\n version_cmd: [\"cat\", \"/opt/ds_agent/version.txt\"]\n path_cmd: [\"echo\", \" /opt/ds_agent/ds_agent\"]\n categories: [\"system\", \"security\"]\n if: \"/opt/ds_agent/ds_agent\"\n\n - name: eclipse\n categories: [\"development\", \"ide\"]\n\n - name: emacs\n categories: [\"editor\"]\n\n - name: exegol\n categories: [\"security\", \"pentesting\"]\n version_cmd: [\"exegol\", \"version\", \"--accept-eula\"]\n\n - name: firefox\n categories: [\"browser\", \"network\"]\n\n - name: flatpak\n categories: [\"package-manager\"]\n\n - name: fly\n categories: [\"devops\"]\n\n - name: geckodriver\n categories: [\"testing\", \"automation\"]\n\n - name: gcc\n categories: [\"build\"] \n\n - name: gemini\n categories: [\"ia\"]\n\n - name: git\n categories: [\"development\", \"version-control\"]\n\n - name: gnome-shell\n categories: [\"system\"]\n\n - name: gnome-text-editor\n categories: [\"editor\"]\n\n - name: go\n version_cmd: [\"go\", \"version\"] \n categories: [\"language\", \"runtime\", \"development\"]\n\n - name: google-chrome\n categories: [\"browser\", \"network\"]\n\n - name: google-chrome-stable\n categories: [\"browser\", \"network\"]\n\n - name: gradle\n categories: [\"build\", \"development\"]\n\n - name: grep\n categories: [\"system\"]\n\n - name: groovy\n categories: [\"language\", \"development\", \"scripting\"]\n\n - name: hadolint\n categories: [\"linting\", \"devops\", \"containers\"]\n\n - name: helm\n version_cmd: [\"helm\", \"version\"]\n categories: [\"devops\", \"kubernetes\"]\n\n - name: host\n version_cmd: [\"host\", \"-V\"]\n categories: [\"network\"]\n\n - name: httpd\n version_cmd: [\"httpd\", \"-V\"]\n categories: [\"server\", \"network\"]\n\n - name: httpie\n categories: [\"network\"]\n\n - name: intellij\n categories: [\"development\", \"ide\"]\n\n - name: intune-portal\n version_cmd: [\"intune-portal\", \"-V\"]\n categories: [\"system\"]\n\n - name: iptables\n categories: [\"network\"]\n \n - name: java\n version_cmd: [\"java\", \"-version\"]\n categories: [\"language\", \"runtime\", \"development\"]\n\n - name: jq\n categories: [\"scripting\", \"database\"]\n\n - name: kate\n categories: [\"editor\"]\n\n - name: kernel\n version_cmd: [\"uname\", \"-r\"]\n path_cmd: [\"bash\", \"-c\", \"readlink -f /boot/vmlinuz-$("

Why PkgRadar flagged 5.2.3

Severity	Signal	Evidence
high	DNS / OAST exfiltration	matched "dig\n version_cmd: [\"dig\", \"-v\"]\n categories: [\"network\"]\n\n - name: dnf\n categories: [\"package-manager\"]\n\n - name: docker\n categories: [\"devops\", \"containers\"]\n if: \"docker\"\n \n - name: docker-compose\n version_cmd: [\"docker\", \"compose\", \"version\"]\n path_cmd: [\"which\", \"docker\"]\n categories: [\"devops\", \"containers\"]\n\n - name: ds_agent\n version_cmd: [\"cat\", \"/opt/ds_agent/version.txt\"]\n path_cmd: [\"echo\", \" /opt/ds_agent/ds_agent\"]\n categories: [\"system\", \"security\"]\n if: \"/opt/ds_agent/ds_agent\"\n\n - name: eclipse\n categories: [\"development\", \"ide\"]\n\n - name: emacs\n categories: [\"editor\"]\n\n - name: exegol\n categories: [\"security\", \"pentesting\"]\n version_cmd: [\"exegol\", \"version\", \"--accept-eula\"]\n\n - name: firefox\n categories: [\"browser\", \"network\"]\n\n - name: flatpak\n categories: [\"package-manager\"]\n\n - name: fly\n categories: [\"devops\"]\n\n - name: geckodriver\n categories: [\"testing\", \"automation\"]\n\n - name: gcc\n categories: [\"build\"] \n\n - name: gemini\n categories: [\"ia\"]\n\n - name: git\n categories: [\"development\", \"version-control\"]\n\n - name: gnome-shell\n categories: [\"system\"]\n\n - name: gnome-text-editor\n categories: [\"editor\"]\n\n - name: go\n version_cmd: [\"go\", \"version\"] \n categories: [\"language\", \"runtime\", \"development\"]\n\n - name: google-chrome\n categories: [\"browser\", \"network\"]\n\n - name: google-chrome-stable\n categories: [\"browser\", \"network\"]\n\n - name: gradle\n categories: [\"build\", \"development\"]\n\n - name: grep\n categories: [\"system\"]\n\n - name: groovy\n categories: [\"language\", \"development\", \"scripting\"]\n\n - name: hadolint\n categories: [\"linting\", \"devops\", \"containers\"]\n\n - name: helm\n version_cmd: [\"helm\", \"version\"]\n categories: [\"devops\", \"kubernetes\"]\n\n - name: host\n version_cmd: [\"host\", \"-V\"]\n categories: [\"network\"]\n\n - name: httpd\n version_cmd: [\"httpd\", \"-V\"]\n categories: [\"server\", \"network\"]\n\n - name: httpie\n categories: [\"network\"]\n\n - name: intellij\n categories: [\"development\", \"ide\"]\n\n - name: intune-portal\n version_cmd: [\"intune-portal\", \"-V\"]\n categories: [\"system\"]\n\n - name: iptables\n categories: [\"network\"]\n \n - name: java\n version_cmd: [\"java\", \"-version\"]\n categories: [\"language\", \"runtime\", \"development\"]\n\n - name: jq\n categories: [\"scripting\", \"database\"]\n\n - name: kate\n categories: [\"editor\"]\n\n - name: kernel\n version_cmd: [\"uname\", \"-r\"]\n path_cmd: [\"bash\", \"-c\", \"readlink -f /boot/vmlinuz-$(" · pydevversions-5.2.3/pydevversions/apps.yaml

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`5.2.3`	High risk	30	2026-05-30

Block this in CI

PkgRadar gates pydevversions (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi pydevversions==5.2.3

Start free — 25 scans / mo View full evidence