PkgRadar

Go modules · proxy.golang.org

github.com/SuperBotForge/SuperBotCore

Shell Credential File Read, Obfuscation Density

Why PkgRadar flagged v1.2.9

SeveritySignalEvidence
highShell Credential File Read

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v1.2.0Low risk02026-07-02
v1.2.1Low risk02026-07-02
v1.2.3Low risk02026-07-02
v1.2.5Low risk02026-07-02
v1.2.9High risk452026-07-02
v1.4.10-0.20260628154442-d0579386ca20High risk452026-07-02
v1.4.9High risk452026-07-02
v1.2.7High risk452026-07-02
v1.2.8High risk452026-07-02
v1.2.2Low risk02026-07-02
v1.3.1High risk452026-07-02
v1.2.4Low risk02026-07-02
v1.3.0High risk452026-07-02
v1.2.6High risk452026-07-02

Block this in CI

PkgRadar gates github.com/SuperBotForge/SuperBotCore (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/SuperBotForge/[email protected]
github.com/SuperBotForge/SuperBotCore — Go modules security scan | PkgRadar