PyPI · pypi.org

ucon

Credential file access: matched "GITHUB_TOKEN"

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`2.1.1`	Low risk	0	2026-06-16
`2.1.0`	Low risk	0	2026-06-16
`2.0.1`	Low risk	0	2026-06-15
`2.0.0`	Low risk	0	2026-06-07
`2.0.0a3`	Low risk	0	2026-06-06
`2.0.0a2`	Low risk	0	2026-06-04
`2.0.0a1`	Review	1	2026-05-27

Block this in CI

PkgRadar gates ucon (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi ucon==2.0.0a1