PyPI · pypi.org
zenml
Py Runtime Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.
Why PkgRadar flagged 0.94.6
| Severity | Signal | Evidence |
|---|---|---|
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · zenml-0.94.6/src/zenml/integrations/gcp/service_connectors/gcp_service_connector.py |
| high | Py Runtime Base64 Decode | base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · zenml-0.94.6/src/zenml/integrations/kubernetes/service_connectors/kubernetes_service_connector.py |
| medium | Py Custom Build Backend | Non-standard PEP 517 build-backend `uv_build` — runs custom code at install time. · pyproject.toml |
| medium | Remote Payload | matched "raw.githubusercontent.com" · zenml-0.94.6/src/zenml/zen_server/dashboard/assets/index-B1ovDZng.js |
| medium | Remote Payload | matched "raw.githubusercontent.com" · zenml-0.94.6/src/zenml/zen_server/dashboard/assets/page-DMfi1Cqq.js |
| medium | Credential file access | matched "GOOGLE_APPLICATION_CREDENTIALS" · zenml-0.94.6/src/zenml/zen_stores/secrets_stores/gcp_secrets_store.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.94.6 | Review | 41 | 2026-06-02 |
0.94.5 | Review | 64 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem pypi zenml==0.94.6