PkgRadar

PyPI · pypi.org

vfbquery

Remote Payload: matched "raw.githubusercontent.com"

Why PkgRadar flagged 1.10.1

SeveritySignalEvidence
mediumRemote Payloadmatched "raw.githubusercontent.com" · vfbquery-1.10.1/src/vfbquery/vfb_queries.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.21.1Low risk02026-06-16
1.21.0Low risk02026-06-15
1.20.0Low risk02026-06-09
1.19.0Low risk02026-06-08
1.18.0Low risk02026-06-06
1.17.0Low risk02026-06-04
1.16.0Low risk02026-06-04
1.15.4Low risk02026-06-04
1.15.3Low risk02026-06-04
1.15.2Low risk02026-06-04
1.15.1Low risk02026-06-04
1.15.0Low risk02026-06-04
1.14.11Low risk02026-06-03
1.14.12Low risk02026-06-03
1.14.10Low risk02026-06-03
1.14.9Low risk02026-06-03
1.14.8Low risk02026-06-03
1.14.7Low risk02026-06-02
1.14.6Low risk02026-06-02
1.14.5Low risk02026-06-02
1.14.3Low risk02026-06-02
1.14.4Low risk02026-06-02
1.14.0Low risk02026-06-02
1.14.1Low risk02026-06-02
1.14.2Low risk02026-06-02
1.13.7Low risk02026-06-02
1.13.5Low risk02026-06-01
1.13.4Low risk02026-06-01
1.13.2Low risk02026-06-01
1.13.1Low risk02026-06-01
1.13.0Low risk02026-06-01
1.12.12Low risk02026-06-01
1.12.11Low risk02026-06-01
1.12.10Low risk02026-06-01
1.12.9Low risk02026-06-01
1.12.8Low risk02026-06-01
1.12.7Low risk02026-06-01
1.12.6Low risk02026-06-01
1.12.5Low risk02026-05-31
1.12.4Low risk02026-05-30
1.12.3Low risk02026-05-30
1.12.2Low risk02026-05-30
1.12.1Low risk02026-05-30
1.12.0Low risk02026-05-29
1.10.1Review62026-05-27

Block this in CI

PkgRadar gates vfbquery (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi vfbquery==1.10.1
Start free — 25 scans / moView full evidence