PyPI · pypi.org
skiller
Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.
Why PkgRadar flagged 0.1.0b11
| Severity | Signal | Evidence |
|---|---|---|
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · skiller-0.1.0b11/packages/skiller/agents/auths/codex_auth.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.1.0b11 | High risk | 33 | 2026-06-12 |
0.1.0b10 | High risk | 30 | 2026-06-11 |
0.1.0b9 | High risk | 30 | 2026-06-10 |
0.1.0b8 | High risk | 30 | 2026-06-10 |
0.1.0b7 | High risk | 30 | 2026-06-10 |
0.1.0b6 | High risk | 30 | 2026-06-09 |
0.1.0b5 | High risk | 30 | 2026-06-08 |
0.1.0b4 | High risk | 30 | 2026-06-07 |
0.1.0b3 | High risk | 30 | 2026-06-07 |
0.1.0b2 | High risk | 30 | 2026-06-03 |
0.1.0b1 | High risk | 30 | 2026-06-01 |
1.0.0b9 | High risk | 30 | 2026-05-30 |
1.0.0b8 | High risk | 30 | 2026-05-30 |
1.0.0b7 | High risk | 30 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem pypi skiller==0.1.0b11