PyPI · pypi.org

tea-agent

Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Why PkgRadar flagged 0.9.30

Severity	Signal	Evidence
high	Py Runtime Base64 Decode	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · tea_agent-0.9.30/tea_agent/gui.py
high	Py Runtime Base64 Decode	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · tea_agent-0.9.30/tea_agent/toolkit/toolkit_ocr.py

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.9.30`	High risk	50	2026-06-17
`0.9.24`	High risk	50	2026-06-17
`0.9.23`	High risk	50	2026-06-17
`0.9.22`	High risk	50	2026-06-10
`0.9.21`	High risk	50	2026-06-08
`0.9.20`	High risk	50	2026-06-05
`0.9.18`	High risk	50	2026-06-04
`0.9.16`	High risk	50	2026-06-02
`0.9.15`	High risk	50	2026-06-02
`0.9.14`	High risk	30	2026-06-01
`0.9.13`	High risk	30	2026-06-01
`0.9.12`	High risk	30	2026-05-30
`0.9.11`	High risk	30	2026-05-30
`0.9.10`	High risk	30	2026-05-30
`0.9.9`	Low risk	0	2026-05-27
`0.9.8`	Low risk	0	2026-05-27

Block this in CI

PkgRadar gates tea-agent (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi tea-agent==0.9.30