PkgRadar

PyPI · pypi.org

sawsi

Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Why PkgRadar flagged 20.33

SeveritySignalEvidence
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · sawsi-20.33/sawsi/provision/applier.py
mediumRemote Payloadmatched "curl " · sawsi-20.33/sawsi/shared/aws_es_proxy_util.py

Scanned versions

VersionVerdictScoreScanned (UTC)
20.33High risk232026-06-15
20.32High risk232026-06-10
20.30High risk232026-06-07
20.28High risk232026-06-07
20.27High risk232026-06-07
20.26High risk232026-06-07
20.25High risk232026-06-07
20.24High risk232026-06-06
20.23High risk232026-06-06
20.22High risk232026-06-06
20.21Review62026-06-06
20.20Review62026-06-06
20.14Review62026-06-04
20.13Review62026-05-30

Block this in CI

PkgRadar gates sawsi (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi sawsi==20.33
Start free — 25 scans / moView full evidence