Cargo · crates.io
colgrep
Remote Payload: matched "Invoke-WebRequest"
Why PkgRadar flagged 1.5.5
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "Invoke-WebRequest" · colgrep-1.5.5/src/commands/update.rs |
| medium | Remote Payload | matched "github.com/microsoft/onnxruntime/releases/download" · colgrep-1.5.5/src/onnx_runtime.rs |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
1.5.5 | Review | 24 | 2026-06-16 |
1.5.4 | Review | 24 | 2026-06-09 |
1.5.3 | Review | 24 | 2026-06-08 |
1.5.2 | Review | 24 | 2026-06-03 |
1.5.1 | Review | 24 | 2026-06-01 |
1.5.0 | Review | 24 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem cargo [email protected]