https://hackmysupplychain.com Responsible disclosure of Python supply chain behavioral findings, backed by signed attestations. en-us Sat, 06 Apr 2026 00:00:00 GMT https://hackmysupplychain.com/finding/deepeval-pii-collection deepeval@3.9.5 calls api.ipify.org at import time, retrieves the caller's public IPv4, and stamps it onto every PostHog telemetry event as user.public_ip. Opt-out: DEEPEVAL_TELEMETRY_OPT_OUT=YES (verified working). Sat, 05 Apr 2026 00:00:00 GMT deepeval-pii-collection https://hackmysupplychain.com/finding/litellm-unpinned-fetch litellm@1.83.3 fetches model_prices_and_context_window.json from raw.githubusercontent.com/BerriAI/litellm/main/ at every import. Not pinned. 54 downstream packages inherit this. Opt-out: LITELLM_LOCAL_MODEL_COST_MAP=True (verified working). Sat, 05 Apr 2026 00:00:00 GMT litellm-unpinned-fetch https://hackmysupplychain.com/finding/composio-dynamic-sentry composio_core fetches its Sentry DSN from backend.composio.dev/api/v1/cli/sentry-dns at process exit, persists to ~/.composio/user_data.json. COMPOSIO_DISABLE_SENTRY=true does NOT prevent this (verified). Sat, 05 Apr 2026 00:00:00 GMT composio-dynamic-sentry https://hackmysupplychain.com/finding/weave-sentry-session weave@0.52.36 POSTs a Sentry session envelope to o151352.ingest.us.sentry.io on every import. WANDB_ERROR_REPORTING=false does NOT prevent this (verified). Sat, 05 Apr 2026 00:00:00 GMT weave-sentry-session https://hackmysupplychain.com/finding/paddleocr-reachability paddleocr@3.4.0 sends HEAD requests to huggingface.co, aistudio.baidu.com, modelscope.cn, and paddle-model-ecology.bj.bcebos.com at import. HF_HUB_OFFLINE=1 only partially works. Sat, 05 Apr 2026 00:00:00 GMT paddleocr-reachability https://hackmysupplychain.com/finding/crewai-credential-write crewai@1.13.0.dev writes an encryption key to ~/.local/share/crewai/credentials/secret.key at import, before any explicit setup. Sat, 05 Apr 2026 00:00:00 GMT crewai-credential-write