PkgRadar

PyPI · pypi.org

yanzhiti

Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Why PkgRadar flagged 2.3.2

SeveritySignalEvidence
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · yanzhiti-2.3.2/src/yanzhiti/agents/utils/file_handling.py
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · yanzhiti-2.3.2/src/yanzhiti/app/channels/imessage/channel.py
mediumRemote Payloadmatched "wget " · yanzhiti-2.3.2/src/yanzhiti/agents/utils/file_handling.py

Scanned versions

VersionVerdictScoreScanned (UTC)
2.3.2High risk682026-06-06
2.3.1High risk682026-06-06
2.3.0High risk682026-06-06
0.99.3High risk682026-06-06
0.99.2High risk682026-06-06
0.99.1High risk682026-06-06
0.99.0High risk682026-06-06

Block this in CI

PkgRadar gates yanzhiti (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi yanzhiti==2.3.2
Start free — 25 scans / moView full evidence
yanzhiti — PyPI security scan | PkgRadar