Summary
agent-framework-lib v0.6.1 was classified as CRITICAL RISK with a risk score of 1003. Sigil detected 54 findings across 223 files, covering phases including install hooks, obfuscation, code patterns, network exfiltration. Review the findings below before installing this package.
v0.6.1
23 March 2026, 14:48 UTC
by Sigil Bot
Risk Score
1003
Findings
54
Files Scanned
223
Provenance
Findings by Phase
Phase Ordering
Phases are ordered by criticality, with the most dangerous at the top. Click any phase header to expand or collapse its findings. Critical phases are expanded by default.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/PKG-INFO:199
# macOS/Linux
curl -fsSL https://deno.land/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/README.md:61
# macOS/Linux
curl -fsSL https://deno.land/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/utils/post_install.py:357
# macOS: Use curl with shell script
return (["sh", "-c", "curl -fsSL https://deno.land/install.sh | sh"], "sh")
elif system == "linux":Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/utils/post_install.py:364
f'export DENO_INSTALL="{deno_install_dir}" && '
"curl -fsSL https://deno.land/install.sh | sh"
)Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/utils/post_install.py:434
"Install Deno manually:\n"
" curl -fsSL https://deno.land/install.sh | sh\n\n"
" If curl is not installed:\n"Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/utils/post_install.py:446
"Install Deno manually:\n"
" curl -fsSL https://deno.land/install.sh | sh\n\n"
" After installation, add to PATH:\n"Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/web/docs/README.md:61
# macOS/Linux
curl -fsSL https://deno.land/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/web/docs/installation-guide.md:24
# Install UV if you haven't already
curl -LsSf https://astral.sh/uv/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/web/docs/installation-guide.md:195
# Install UV if you haven't already
curl -LsSf https://astral.sh/uv/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/web/docs/installation-guide.md:282
# Deno (via official installer)
curl -fsSL https://deno.land/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework/web/docs/installation-guide.md:430
```bash
curl -fsSL https://deno.land/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/agent_framework_lib.egg-info/PKG-INFO:199
# macOS/Linux
curl -fsSL https://deno.land/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/docs/installation-guide.md:24
# Install UV if you haven't already
curl -LsSf https://astral.sh/uv/install.sh | sh
Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/docs/installation-guide.md:195
# Install UV if you haven't already
curl -LsSf https://astral.sh/uv/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/docs/installation-guide.md:282
# Deno (via official installer)
curl -fsSL https://deno.land/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-makefile-curl
HIGHMakefile/script pipes remote content to shell
agent_framework_lib-0.6.1/docs/installation-guide.md:430
```bash
curl -fsSL https://deno.land/install.sh | sh
```Why was this flagged?
A script or Makefile pipes content from a remote URL directly into a shell (curl | sh or wget | bash). This is inherently dangerous because the remote content can change at any time, and the command runs with the current user's permissions. Rated HIGH because it requires manual execution (unlike install hooks) but still executes arbitrary remote code.
install-setup-py-cmdclass
CRITICALsetup.py overrides cmdclass — may execute code during install
agent_framework_lib-0.6.1/setup.py:40
setup(
cmdclass={
'build_py': BuildWithDocs,Why was this flagged?
This package overrides Python's setup.py cmdclass, which allows arbitrary code to execute during pip install. This is the primary attack vector for malicious PyPI packages — attackers use it to steal credentials, install backdoors, or download additional payloads before the developer ever runs the code. Rated CRITICAL because it executes automatically with no user interaction required.
Badge
Markdown
[](https://sigilsec.ai/scans/21B5D751-C6DD-4632-958E-F02D6CE67E1A)HTML
<a href="https://sigilsec.ai/scans/21B5D751-C6DD-4632-958E-F02D6CE67E1A"><img src="https://sigilsec.ai/badge/pypi/agent-framework-lib" alt="Sigil Scan"></a>Run This Scan Yourself
Scan your own packages
Run Sigil locally to audit any package before it touches your codebase.
Early Access
Get cloud scanning, threat intel, and CI/CD integration.
Join 150+ developers on the waitlist.
Get threat intelligence and product updates
Security research, new threat signatures, and product updates. No spam.
Other pypi scans
Believe this result is incorrect? Request a review or see our Terms of Service and Methodology.