PyPI · pypi.org

vllm-sr

Remote Payload: matched "curl "

Why PkgRadar flagged 0.3.0.dev20260527121622

Severity	Signal	Evidence
medium	Remote Payload	matched "curl " · vllm_sr-0.3.0.dev20260527121622/cli/runtime_lifecycle.py

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`0.3.0.dev20260613101602`	Low risk	0	2026-06-13
`0.3.0.dev20260613053001`	Low risk	0	2026-06-13
`0.3.0.dev20260612145913`	Low risk	0	2026-06-12
`0.3.0.dev20260612141242`	Low risk	0	2026-06-12
`0.3.0.dev20260612134944`	Low risk	0	2026-06-12
`0.3.0.dev20260612105258`	Low risk	0	2026-06-12
`0.3.0.dev20260611174128`	Low risk	0	2026-06-11
`0.3.0.dev20260611150420`	Low risk	0	2026-06-11
`0.3.0.dev20260611134417`	Low risk	0	2026-06-11
`0.3.0.dev20260610061646`	Low risk	0	2026-06-10
`0.3.0.dev20260610010642`	Low risk	0	2026-06-10
`0.3.0.dev20260609160928`	Low risk	0	2026-06-09
`0.3.0.dev20260609142133`	Low risk	0	2026-06-09
`0.3.0.dev20260609113912`	Low risk	0	2026-06-09
`0.3.0.dev20260609074658`	Low risk	0	2026-06-09
`0.3.0.dev20260609010534`	Low risk	0	2026-06-09
`0.3.0.dev20260608151518`	Low risk	0	2026-06-08
`0.3.0.dev20260608151135`	Low risk	0	2026-06-08
`0.3.0.dev20260608121821`	Low risk	0	2026-06-08
`0.3.0.dev20260608015540`	Low risk	0	2026-06-08
`0.3.0.dev20260607160947`	Low risk	0	2026-06-07
`0.3.0.dev20260607161020`	Low risk	0	2026-06-07
`0.3.0.dev20260607123219`	Low risk	0	2026-06-07
`0.3.0.dev20260606124108`	Low risk	0	2026-06-06
`0.3.0.dev20260606075931`	Low risk	0	2026-06-06
`0.3.0.dev20260605173848`	Low risk	0	2026-06-05
`0.3.0.dev20260605170054`	Low risk	0	2026-06-05
`0.3.0.dev20260605142910`	Low risk	0	2026-06-05
`0.3.0.dev20260605130431`	Low risk	0	2026-06-05
`0.3.0.dev20260605120815`	Low risk	0	2026-06-05
`0.3.0`	Low risk	0	2026-06-05
`0.3.0.dev20260605115945`	Low risk	0	2026-06-05
`0.3.0.dev20260605114208`	Low risk	0	2026-06-05
`0.3.0.dev20260605105652`	Low risk	0	2026-06-05
`0.3.0.dev20260605102936`	Low risk	0	2026-06-05
`0.3.0.dev20260605092108`	Low risk	0	2026-06-05
`0.3.0.dev20260605012054`	Low risk	0	2026-06-05
`0.3.0.dev20260605011041`	Low risk	0	2026-06-05
`0.3.0.dev20260604142243`	Low risk	0	2026-06-04
`0.3.0.dev20260604112842`	Low risk	0	2026-06-04
`0.3.0.dev20260604000505`	Low risk	0	2026-06-04
`0.3.0.dev20260604000343`	Low risk	0	2026-06-04
`0.3.0.dev20260603145640`	Low risk	0	2026-06-03
`0.3.0.dev20260603125825`	Low risk	0	2026-06-03
`0.3.0.dev20260603124938`	Low risk	0	2026-06-03
`0.3.0.dev20260603112220`	Low risk	0	2026-06-03
`0.3.0.dev20260603112110`	Low risk	0	2026-06-03
`0.3.0.dev20260603074323`	Low risk	0	2026-06-03
`0.3.0.dev20260603073100`	Low risk	0	2026-06-03
`0.3.0.dev20260603054517`	Low risk	0	2026-06-03
`0.3.0.dev20260603023915`	Low risk	0	2026-06-03
`0.3.0.dev20260602133245`	Low risk	0	2026-06-02
`0.3.0.dev20260602053645`	Low risk	0	2026-06-02
`0.3.0.dev20260602052603`	Low risk	0	2026-06-02
`0.3.0.dev20260601175159`	Low risk	0	2026-06-01
`0.3.0.dev20260601161021`	Low risk	0	2026-06-01
`0.3.0.dev20260601160359`	Low risk	0	2026-06-01
`0.3.0.dev20260601155553`	Low risk	0	2026-06-01
`0.3.0.dev20260601155523`	Low risk	0	2026-06-01
`0.3.0.dev20260601140129`	Low risk	0	2026-06-01
`0.3.0.dev20260601114605`	Low risk	0	2026-06-01
`0.3.0.dev20260601100755`	Low risk	0	2026-06-01
`0.3.0.dev20260601091725`	Low risk	0	2026-06-01
`0.3.0.dev20260601091616`	Low risk	0	2026-06-01
`0.3.0.dev20260601091336`	Low risk	0	2026-06-01
`0.3.0.dev20260601083646`	Low risk	0	2026-06-01
`0.3.0.dev20260531143259`	Low risk	0	2026-05-31
`0.3.0.dev20260531143157`	Low risk	0	2026-05-31
`0.3.0.dev20260531050623`	Low risk	0	2026-05-31
`0.3.0.dev20260531032157`	Low risk	0	2026-05-31
`0.3.0.dev20260531032108`	Low risk	0	2026-05-31
`0.3.0.dev20260531031952`	Low risk	0	2026-05-31
`0.3.0.dev20260531031844`	Low risk	0	2026-05-31
`0.3.0.dev20260531030616`	Low risk	0	2026-05-31
`0.3.0.dev20260530175641`	Low risk	0	2026-05-30
`0.3.0.dev20260530115008`	Low risk	0	2026-05-30
`0.3.0.dev20260530110654`	Low risk	0	2026-05-30
`0.3.0.dev20260530080604`	Low risk	0	2026-05-30
`0.3.0.dev20260530022956`	Low risk	0	2026-05-30
`0.3.0.dev20260530022726`	Low risk	0	2026-05-30
`0.3.0.dev20260530003631`	Low risk	0	2026-05-30
`0.3.0.dev20260529220613`	Low risk	0	2026-05-29
`0.3.0.dev20260529141630`	Low risk	0	2026-05-29
`0.3.0.dev20260529131810`	Low risk	0	2026-05-29
`0.3.0.dev20260529094420`	Low risk	0	2026-05-29
`0.3.0.dev20260529073305`	Low risk	0	2026-05-29
`0.3.0.dev20260529034502`	Low risk	0	2026-05-29
`0.3.0.dev20260528222113`	Low risk	0	2026-05-28
`0.3.0.dev20260528222007`	Low risk	0	2026-05-28
`0.3.0.dev20260528195013`	Low risk	0	2026-05-28
`0.3.0.dev20260528174122`	Low risk	0	2026-05-28
`0.3.0.dev20260528161129`	Low risk	0	2026-05-28
`0.3.0.dev20260528153908`	Low risk	0	2026-05-28
`0.3.0.dev20260527121622`	Review	12	2026-05-27
`0.3.0.dev20260527121417`	Review	12	2026-05-27
`0.3.0.dev20260527075613`	Review	12	2026-05-27
`0.3.0.dev20260527062103`	Review	12	2026-05-27

Block this in CI

PkgRadar gates vllm-sr (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi vllm-sr==0.3.0.dev20260527121622

Start free — 25 scans / mo View full evidence