PkgRadar

Go modules · proxy.golang.org

github.com/FusionFoundation/dcrm-go

Shell Credential File Read, Go Generate Shell, Remote Payload +3 more

Why PkgRadar flagged v0.4.1-0.20190906104840-3b4071bccdbc

SeveritySignalEvidence
highShell Credential File Read
highShell Credential File Read
highShell Credential File Read
highShell Credential File Read
highShell Credential File Read
mediumGo Generate Shell
mediumRemote Payload
mediumTls Verification Disabled
mediumRemote Payload
mediumTls Verification Disabled
mediumRemote Payload

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.4.1-0.20190906104840-3b4071bccdbcHigh risk1682026-06-27
v0.4.0High risk1322026-06-27

Block this in CI

PkgRadar gates github.com/FusionFoundation/dcrm-go (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/FusionFoundation/[email protected]
Start free — 25 scans / moView full evidence
github.com/FusionFoundation/dcrm-go — Go modules security scan | PkgRadar