PkgRadar

PyPI · pypi.org

revyl

Remote Payload: matched "github.com/{REPO}/releases/download"

Why PkgRadar flagged 0.1.27

SeveritySignalEvidence
mediumRemote Payloadmatched "github.com/{REPO}/releases/download" · revyl-0.1.27/revyl/_binary.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.1.32Low risk02026-06-12
0.1.31Low risk02026-06-10
0.1.30Low risk02026-06-03
0.1.29Low risk02026-06-01
0.1.28Low risk02026-05-29
0.1.27Review122026-05-27

Block this in CI

PkgRadar gates revyl (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi revyl==0.1.27
Start free — 25 scans / moView full evidence