PkgRadar

PyPI · pypi.org

unitorch

Py Import Time Eval Exec: Python eval()/exec() called on a string.

Why PkgRadar flagged 0.0.2.0

SeveritySignalEvidence
mediumPy Import Time Eval ExecPython eval()/exec() called on a string. · unitorch-0.0.2.0/src/unitorch/cli/writers/__init__.py
highPy Import Time Network CallNetwork call (urllib/requests/httpx/http.client) at install or import time. · unitorch-0.0.2.0/src/unitorch/utils/__init__.py

Scanned versions

VersionVerdictScoreScanned (UTC)
0.0.2.0High risk202026-06-01

Block this in CI

PkgRadar gates unitorch (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi unitorch==0.0.2.0
Start free — 25 scans / moView full evidence