PkgRadar

PyPI · pypi.org

sentrik

Remote Payload: matched "github.com/maxgerhardson/sentrik-community/releases/download"

Why PkgRadar flagged 1.5.110

SeveritySignalEvidence
mediumRemote Payloadmatched "github.com/maxgerhardson/sentrik-community/releases/download" · sentrik-1.5.110/npm-package/install.js

Scanned versions

VersionVerdictScoreScanned (UTC)
1.5.110Review152026-06-17
1.5.108Review152026-06-17
1.5.106Review152026-06-16
1.5.103Review152026-06-15
1.5.101Review32026-06-03
1.5.100Review32026-06-02
1.5.93Review32026-05-30
1.5.92Review152026-05-30
1.5.99Review152026-05-29
1.5.96Review152026-05-29
1.5.95Review152026-05-29
1.5.94Review32026-05-29

Block this in CI

PkgRadar gates sentrik (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi sentrik==1.5.110
Start free — 25 scans / moView full evidence