api-res-py package in PyPI 0.1 is vulnerable to a code execution backdoor in the request package.
api-res-py project api-res-py 0.1