PkgRadar

PyPI · pypi.org

stackwright-puppy

Py Runtime Dynamic Dangerous Import: Dynamic __import__('sys') — reflection bypass for static checks.

Why PkgRadar flagged 0.0.545.post2

SeveritySignalEvidence
highPy Runtime Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · stackwright_puppy-0.0.545.post2/code_puppy/messaging/queue_console.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.545.post2High risk382026-06-04
0.0.545.post1High risk382026-06-04
0.0.545High risk382026-06-04
0.0.537High risk382026-06-01

Block this in CI

PkgRadar gates stackwright-puppy (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi stackwright-puppy==0.0.545.post2
Start free — 25 scans / moView full evidence