Go modules · proxy.golang.org
github.com/Pantheon-Security/medusa
DNS / OAST exfiltration: matched "burpcollaborator.net"
Why PkgRadar flagged v2026.5.10+incompatible
| Severity | Signal | Evidence |
|---|---|---|
| high | DNS / OAST exfiltration | matched "burpcollaborator.net" · github.com/pantheon-security/[email protected]+incompatible/medusa/rules/agent_security/exfiltration_agents_2026.yaml |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v2026.5.10+incompatible | High risk | 75 | 2026-06-08 |
v2026.5.8+incompatible | High risk | 75 | 2026-06-08 |
v2026.5.9+incompatible | High risk | 75 | 2026-06-07 |
Block this in CI
pkgradar gate --ecosystem go github.com/Pantheon-Security/[email protected]+incompatible