Cargo · crates.io
ptuf
Remote Payload: matched "curl "
Why PkgRadar flagged 0.3.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · ptuf-0.3.0/src/audit/redaction.rs |
| medium | Remote Payload | matched "curl\n " · ptuf-0.3.0/src/cli/run.rs |
| medium | Remote Payload | matched "curl\n " · ptuf-0.3.0/src/engine/filter.rs |
| medium | Remote Payload | matched "curl\n " · ptuf-0.3.0/src/engine/mod.rs |
| medium | Remote Payload | matched "curl\n " · ptuf-0.3.0/src/engine/test_support.rs |
| medium | Remote Payload | matched "curl " · ptuf-0.3.0/src/facts/shell.rs |
| medium | Remote Payload | matched "curl " · ptuf-0.3.0/src/plugin/dsl.rs |
| medium | Remote Payload | matched "curl\n " · ptuf-0.3.0/src/plugin/runner.rs |
| medium | Remote Payload | matched "curl " · ptuf-0.3.0/src/rules/mod.rs |
| medium | Remote Payload | matched "curl " · ptuf-0.3.0/src/rules/remote_pipe.rs |
| medium | Remote Payload | matched "curl " · ptuf-0.3.0/src/rules/sensitive_net.rs |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.3.0 | High risk | 150 | 2026-06-01 |
0.2.0 | High risk | 150 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem cargo [email protected]