PkgRadar

PyPI · pypi.org

pyqbf

Remote Payload: matched "wget "

Why PkgRadar flagged 1.1.1.1

SeveritySignalEvidence
mediumRemote Payloadmatched "wget " · pyqbf-1.1.1.1/third_party/depqbf-version-6.03/compile.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
1.1.1.1Review122026-06-08

Block this in CI

PkgRadar gates pyqbf (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi pyqbf==1.1.1.1
Start free — 25 scans / moView full evidence