PkgRadar

Go modules · proxy.golang.org

github.com/Kgateway-dev/Kgateway/v2

Go Generate Shell: //go:generate directive shells out to curl/wget/bash — runs during `go generate`.

Why PkgRadar flagged v2.3.0-rc.1.0.20260603005410-b1e809ad7c0b

SeveritySignalEvidence
mediumGo Generate Shell//go:generate directive shells out to curl/wget/bash — runs during `go generate`. · github.com/kgateway-dev/kgateway/[email protected]/pkg/utils/filter_types/filter_types.go
mediumRemote Payloadmatched "curl\n\n" · github.com/kgateway-dev/kgateway/[email protected]/pkg/utils/requestutils/curl/native_request.go
mediumRemote Payloadmatched "curl\n\n" · github.com/kgateway-dev/kgateway/[email protected]/pkg/utils/requestutils/curl/option.go
mediumRemote Payloadmatched "curl\n\n" · github.com/kgateway-dev/kgateway/[email protected]/pkg/utils/requestutils/curl/request.go
mediumRemote Payloadmatched "curl\n\n" · github.com/kgateway-dev/kgateway/[email protected]/pkg/utils/requestutils/grpcurl/options.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v2.3.0-rc.1.0.20260603005410-b1e809ad7c0bHigh risk662026-06-04
v2.2.0-beta.5High risk542026-06-04
v2.0.5High risk562026-06-04
v2.1.3High risk512026-06-04
v2.2.2High risk662026-06-04
v2.2.0-rc.2High risk662026-06-04
v2.3.0-beta.1High risk662026-06-04
v2.1.0-agw-cel-rbacHigh risk732026-06-04
v2.0.0High risk562026-06-04
v2.0.0-rc.2High risk562026-06-04
v2.0.4High risk562026-06-04
v2.3.0-beta.2High risk662026-06-04
v2.2.0-beta.3High risk542026-06-04
v2.1.0-rc.2High risk512026-06-04
v2.1.0-mainHigh risk562026-06-04
v2.0.2High risk562026-06-04
v2.0.1High risk562026-06-04
v2.0.0-rc.1High risk562026-06-04
v2.0.0-rc.3High risk562026-06-04
v2.0.0-beta3Review442026-06-04
v2.2.0-alpha.1High risk542026-06-04
v2.0.0-mainReview292026-06-04

Block this in CI

PkgRadar gates github.com/Kgateway-dev/Kgateway/v2 (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/Kgateway-dev/Kgateway/[email protected]
Start free — 25 scans / moView full evidence