PkgRadar

Cargo · crates.io

rumdl

Remote Payload: matched "curl "

Why PkgRadar flagged 0.2.18

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · rumdl-0.2.18/src/linguist_data.rs
mediumRemote Payloadmatched "raw.githubusercontent.com" · rumdl-0.2.18/src/output/formatters/sarif.rs
mediumRemote Payloadmatched "raw.githubusercontent.com" · rumdl-0.2.18/src/utils/mkdocs_snippets.rs

Scanned versions

VersionVerdictScoreScanned (UTC)
0.2.18High risk182026-06-16
0.2.17High risk182026-06-15
0.2.16High risk182026-06-13
0.2.15High risk182026-06-12
0.2.13High risk182026-06-11
0.2.12High risk182026-06-10
0.2.11High risk182026-06-10
0.2.10High risk182026-06-08
0.2.9High risk182026-06-06
0.2.8High risk182026-06-05
0.2.7High risk182026-06-03
0.2.6High risk182026-06-03
0.2.4Review182026-05-29
0.2.3Review432026-05-27

Block this in CI

PkgRadar gates rumdl (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem cargo [email protected]
Start free — 25 scans / moView full evidence