PkgRadar

PyPI · pypi.org

tier2

Messenger Bot Endpoint: matched "api.telegram.org/bot" — messenger-bot URL without exfil context (likely a notification handler)

Scanned versions

VersionVerdictScoreScanned (UTC)
1.0.3Review52026-06-17
1.0.2Review52026-05-31
1.0.1Review52026-05-30
1.0.0Review52026-05-30

Block this in CI

PkgRadar gates tier2 (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi tier2==1.0.3
Start free — 25 scans / moView full evidence