PyPI · pypi.org
terradev-cli
Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.
Why PkgRadar flagged 5.1.3
| Severity | Signal | Evidence |
|---|---|---|
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · terradev_cli-5.1.3/terradev_cli/providers/alibaba_provider.py |
| medium | Remote Payload | matched "curl " · terradev_cli-5.1.3/setup/setup.sh |
| medium | Remote Payload | matched "curl " · terradev_cli-5.1.3/terradev_cli/terraform/modules/gpu-node-aws/bootstrap.sh |
| medium | Remote Payload | matched "curl " · terradev_cli-5.1.3/terradev_cli/terraform/modules/gpu-node-hyperstack/bootstrap.sh |
| medium | Remote Payload | matched "curl " · terradev_cli-5.1.3/terradev_cli/terraform/modules/gpu-node-lambda/bootstrap.sh |
| medium | Remote Payload | matched "curl " · terradev_cli-5.1.3/terradev_cli/terraform/modules/gpu-node-vastai/bootstrap.sh |
| medium | Credential file access | matched ".ssh/" · terradev_cli-5.1.3/terradev_cli/providers/crusoe_provider.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
5.1.3 | High risk | 147 | 2026-06-06 |
5.1.2 | High risk | 172 | 2026-06-05 |
5.1.1 | High risk | 172 | 2026-06-05 |
5.1.0 | High risk | 172 | 2026-06-05 |
Block this in CI
pkgradar gate --ecosystem pypi terradev-cli==5.1.3