Package evidence

smartai==7.9.16

Py Import Time Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Versions published: 3
First published: Oct 2019
Publisher: JohnYan

Recommended action

Block this update

Static evidence trips multiple high-signal indicators. Quarantine the release until the publisher validates the change or you can rule out the indicators below.

Inspect tarball Add to CI gate

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["smartai==7.9.16"],"fail_on":"high"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["smartai==7.9.16"],"fail_on":"high"}'

PublisherJohnYan

Artifact bytes5,337,525

Previous versionnone

Published2026-06-05T06:48:36

SHA-256a40f72ab2a60a41fde5a7e814643ecf7f064fa5e44de7ccc3aa6179535e514d7

Why flagged

What the scanner saw

Py Import Time Base64 Decode: base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

high

13h agoLast checked

highRisk

150Score

7.9.16Version

Status history (1 event)

new → available13h ago · risk high · score 150 · status changed

Evidence

Static findings

89 static · 0 from release diff · showing high-signal first.

Showing 30 of 88 findings.

Severity	Kind	Path	Detail	Points
high	Py Import Time Base64 Decode	smart_chart/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/common/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/management/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/management/commands/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/migrations/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/oa/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/oa/migrations/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/management/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/management/commands/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/migrations/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/smartchart/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Runtime Base64 Decode	smart_chart/common/connect_db.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/file.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/function.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/functions.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jsmin.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jsmin2.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/smartvector.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/tools.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/anthropic.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/bailianAI.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dashAI.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dingdingExcel.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dingdingMsg.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dingdingWebhook.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/feishuExcel.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/feishuMsg.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/feishuWebhook.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30

Show all 89 findings (low-signal and informational)

Showing 60 of 89 findings.

Severity	Kind	Path	Detail	Points
high	Py Import Time Base64 Decode	smart_chart/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/common/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/management/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/management/commands/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/echart/migrations/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/oa/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/oa/migrations/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/management/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/management/commands/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/scheduler/migrations/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Import Time Base64 Decode	smart_chart/smartchart/__init__.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	48
high	Py Runtime Base64 Decode	smart_chart/common/connect_db.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/file.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/function.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/functions.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jsmin.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jsmin2.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/smartvector.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/tools.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/anthropic.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/bailianAI.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dashAI.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dingdingExcel.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dingdingMsg.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/dingdingWebhook.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/feishuExcel.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/feishuMsg.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/feishuWebhook.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/graphql.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/httpApi.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/kafkaconn.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/maxcompute.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/mqtt.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/prometheus.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/py.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/qiweiMsg.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/qiweiWebhook.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/slackWebhook.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/sms.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/smtpmail.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/telegramBot.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/vectorPostgres.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/vectorStarrocks.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/common/jdbclib/webhookGeneric.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/admin.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/apps.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/editor.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/forms.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/index.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/models.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/note.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/urls.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/views.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/views_manage.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/management/commands/run_tool.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/echart/management/commands/rundingdingbot.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/oa/apps.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30
high	Py Runtime Base64 Decode	smart_chart/oa/init_org.py	base64/hex decode combined with exec/subprocess — classic obfuscated payload pattern.	30