Go modules · proxy.golang.org
github.com/GoogleCloudPlatform/buildpacks
Remote Payload: matched "curl "
Why PkgRadar flagged v0.0.0-20260605133825-c202748d06f3
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/googlecloudplatform/[email protected]/cmd/cpp/functions_framework/lib/lib.go |
| medium | Remote Payload | matched "github.com/graalvm/graalvm-ce-builds/releases/download" · github.com/googlecloudplatform/[email protected]/cmd/java/graalvm/lib/lib.go |
| medium | Remote Payload | matched "curl " · github.com/googlecloudplatform/[email protected]/cmd/java/gradle/lib/lib.go |
| medium | Remote Payload | matched "curl " · github.com/googlecloudplatform/[email protected]/cmd/java/maven/lib/lib.go |
| medium | Remote Payload | matched "cURL " · github.com/googlecloudplatform/[email protected]/pkg/devmode/devmode.go |
| medium | Remote Payload | matched "github.com/pnpm/pnpm/releases/download" · github.com/googlecloudplatform/[email protected]/pkg/nodejs/pnpm.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20260605133825-c202748d06f3 | High risk | 77 | 2026-06-06 |
v0.0.0-20260603201606-fb7a183f6203 | High risk | 77 | 2026-06-05 |
v0.0.0-20260602190356-232250adb218 | High risk | 77 | 2026-06-03 |
Block this in CI
pkgradar gate --ecosystem go github.com/GoogleCloudPlatform/[email protected]