graddio @0.226.51
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-3704
Ecosystem
pypi
Summary
During installation, package exfiltrates some basic info to a GitHub issue comment, and then attempt to set up a persistent infostealer focused on exfiltrating crypto wallets and browsers data. Likely continuation of 2026-05-py-requests --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-06-alembic-util Reasons (based on the campaign): - infostealer - The package overrides the install command in setup.py to execute malicious code during installation. - crypto-related - Downloads and executes a remote malicious script. - exfiltration-browser-data - exfiltration-crypto - persistence - typosquatting
Source: kam193 (cf6bbc8eaafef42ed4e5740b1ff94df7749de4241d44846467b438db586399ba)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.