PkgRadar

Go modules · proxy.golang.org

github.com/SamSaffron/term-llm

Remote Payload: matched "raw.githubusercontent.com"

Why PkgRadar flagged v0.0.289-0.20260613062557-a7d3e2d7f8b1

SeveritySignalEvidence
mediumRemote Payloadmatched "raw.githubusercontent.com" · github.com/samsaffron/[email protected]/internal/skills/github_client.go
mediumRemote Payloadmatched "github.com/%s/%s/releases/download" · github.com/samsaffron/[email protected]/internal/update/upgrade.go
mediumRemote Payloadmatched "raw.githubusercontent.com" · github.com/samsaffron/[email protected]/internal/usage/pricing.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.289-0.20260613062557-a7d3e2d7f8b1High risk512026-06-14
v0.0.288High risk512026-06-14
v0.0.287High risk512026-06-13
v0.0.266High risk512026-06-12
v0.0.284High risk512026-06-12
v0.0.260High risk512026-06-01
v0.0.261High risk512026-06-01
v0.0.262High risk512026-06-01
v0.0.263High risk512026-06-01
v0.0.241High risk512026-05-30
v0.0.242High risk512026-05-30
v0.0.243High risk512026-05-30
v0.0.260-0.20260528044725-1124cfcb6e95High risk512026-05-30
v0.0.245High risk512026-05-30
v0.0.244High risk512026-05-30
v0.0.246High risk512026-05-30
v0.0.247High risk512026-05-30
v0.0.248High risk512026-05-30
v0.0.249High risk512026-05-30
v0.0.250High risk512026-05-30
v0.0.251High risk512026-05-30
v0.0.252High risk512026-05-30
v0.0.253High risk512026-05-30
v0.0.254High risk512026-05-30
v0.0.255High risk512026-05-30
v0.0.256High risk512026-05-30
v0.0.257High risk512026-05-30
v0.0.258High risk512026-05-30
v0.0.259High risk512026-05-30

Block this in CI

PkgRadar gates github.com/SamSaffron/term-llm (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/SamSaffron/[email protected]
Start free — 25 scans / moView full evidence