pantheon-agents (>=0.3.0 <=0.3.3rc1), pantheon-cli (>=0.1.1 <=0.1.4rc1) potentially affected by unknown CVE via pantheon-toolsets (=0.5.4)

pantheon-toolsets PYPI version =0.5.4 is affected by a known vulnerability. The following packages have a transitive dependency on pantheon-toolsets and may be impacted: - pantheon-agents =0.3.0, =0.1.1, =0.1.4rc1 Source cves: unknown CVE Source advisory: SNYK:PYTHON-PANTHEONTOOLSETS-17220147...

magique-ai (>=0.1.0 <=0.4.3), pantheon-agents (>=0.3.0 <=0.3.3rc1) +2 more potentially affected by unknown CVE via magique (=0.6.7)

magique PYPI version =0.6.7 is affected by a known vulnerability. The following packages have a transitive dependency on magique and may be impacted: - magique-ai =0.1.0, =0.3.0, =0.1.1, =0.5.0, =0.5.4 Source cves: unknown CVE Source advisory: SNYK:PYTHON-MAGIQUE-17220140...

bioimageio-engine (>=0.1.0 <=0.1.3), executor-http (>=0.1.0 <=0.1.2) +8 more potentially affected by unknown CVE via executor-engine (=0.3.3)

executor-engine PYPI version =0.3.3 is affected by a known vulnerability. The following packages have a transitive dependency on executor-engine and may be impacted: - bioimageio-engine =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.0, =0.1.1, =0.5.0, =0.1.1, =0.1.2 Source cves: unknown CVE Source...

Malicious code in pantheon-toolsets (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3f2d24843d0caf23a36f07f7bd7b3adb7163463404856654f1745c7e75017be The wheel installs pantheontoolsets-setup.pth, which Python automatically executes at every interpreter startup before any user import. The.pth...

MAL-2026-5277 Malicious code in pantheon-toolsets (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3f2d24843d0caf23a36f07f7bd7b3adb7163463404856654f1745c7e75017be The wheel installs pantheontoolsets-setup.pth, which Python automatically executes at every interpreter startup before any user import. The.pth...