Go modules · proxy.golang.org
gitee.com/xiaoyutab/xgotool
Remote Payload: matched "CURL "
Why PkgRadar flagged v0.4.2
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "CURL " · gitee.com/xiaoyutab/[email protected]/https/chaining.go |
| medium | Remote Payload | matched "CURL " · gitee.com/xiaoyutab/[email protected]/https/hook.go |
| medium | Remote Payload | matched "CURL " · gitee.com/xiaoyutab/[email protected]/https/init.go |
| medium | Remote Payload | matched "CURL " · gitee.com/xiaoyutab/[email protected]/https/new.go |
| medium | Remote Payload | matched "curl " · gitee.com/xiaoyutab/[email protected]/https/query.go |
| medium | Remote Payload | matched "CURL " · gitee.com/xiaoyutab/[email protected]/https/quest.go |
| medium | Remote Payload | matched "CURL " · gitee.com/xiaoyutab/[email protected]/https/retry.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.4.2 | High risk | 62 | 2026-06-17 |
Block this in CI
pkgradar gate --ecosystem go gitee.com/xiaoyutab/[email protected]