PkgRadar

Go modules · proxy.golang.org

congo.gg

Remote Payload, Credential file access

Why PkgRadar flagged v0.2.0

SeveritySignalEvidence
mediumRemote Payload
mediumRemote Payload
mediumRemote Payload
mediumCredential file access

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.2.0Review392026-07-07

Block this in CI

PkgRadar gates congo.gg (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go [email protected]
congo.gg — Go modules security scan | PkgRadar