PkgRadar

PyPI · pypi.org

squish-ai

Py Import Time Subprocess: subprocess call — process spawning.

Why PkgRadar flagged 9.33.5

SeveritySignalEvidence
mediumPy Import Time Subprocesssubprocess call — process spawning. · squish_ai-9.33.5/squish/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
9.33.5Review322026-06-05
9.33.4Review322026-06-04
9.33.2Low risk02026-06-03
9.33.1Low risk02026-06-03
9.33.0Low risk02026-06-03
9.32.0Low risk02026-06-02

Block this in CI

PkgRadar gates squish-ai (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi squish-ai==9.33.5
Start free — 25 scans / moView full evidence