PyPI · pypi.org
zou
Py Runtime Subprocess: subprocess call — process spawning.
Why PkgRadar flagged 1.0.43
| Severity | Signal | Evidence |
|---|---|---|
| medium | Py Runtime Subprocess | subprocess call — process spawning. · zou-1.0.43/zou/app/services/backup_service.py |
| medium | Py Runtime Subprocess | subprocess call — process spawning. · zou-1.0.43/zou/app/utils/git.py |
| medium | Py Runtime Subprocess | subprocess call — process spawning. · zou-1.0.43/zou/app/utils/plugins.py |
| medium | Py Runtime Subprocess | subprocess call — process spawning. · zou-1.0.43/zou/app/utils/shell.py |
| medium | Py Runtime Subprocess | subprocess call — process spawning. · zou-1.0.43/zou/utils/movie.py |
| medium | Remote Payload | matched "curl " · zou-1.0.43/zou/app/openapi-code-samples.json |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.0.51 | Low risk | 0 | 2026-06-16 |
1.0.50 | Low risk | 0 | 2026-06-15 |
1.0.49 | Low risk | 0 | 2026-06-09 |
1.0.48 | Low risk | 0 | 2026-06-09 |
1.0.47 | Low risk | 0 | 2026-06-09 |
1.0.46 | Low risk | 0 | 2026-06-02 |
1.0.45 | Low risk | 0 | 2026-06-02 |
1.0.44 | Low risk | 0 | 2026-05-29 |
1.0.43 | Review | 23 | 2026-05-26 |
Block this in CI
pkgradar gate --ecosystem pypi zou==1.0.43