PkgRadar

Go modules · proxy.golang.org

github.com/JAugusto42/sandtrap

Webhook Exfil Endpoint, Remote Payload, Credential file access

Why PkgRadar flagged v0.1.8

SeveritySignalEvidence
highWebhook Exfil Endpoint
mediumRemote Payload
mediumRemote Payload
mediumRemote Payload

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.1.8High risk742026-07-07
v0.1.7High risk742026-07-07
v0.1.7-0.20260706030800-0dbf0977655fHigh risk742026-07-07
v0.1.6High risk742026-07-07

Block this in CI

PkgRadar gates github.com/JAugusto42/sandtrap (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/JAugusto42/[email protected]
github.com/JAugusto42/sandtrap — Go modules security scan | PkgRadar