Go modules · proxy.golang.org
github.com/XelHaku/golang-hermes-agent
Credential file access, Remote Payload, Obfuscation Density
Why PkgRadar flagged v0.2.28-0.20260621224855-3332452d28b4
| Severity | Signal | Evidence |
|---|---|---|
| high | Credential file access | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
| medium | Remote Payload | — |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20260420131351-1ec74a23a64e | Low risk | 0 | 2026-07-07 |
v0.2.28-0.20260621224855-3332452d28b4 | High risk | 80 | 2026-07-07 |
v0.2.27 | High risk | 77 | 2026-07-07 |
Block this in CI
pkgradar gate --ecosystem go github.com/XelHaku/[email protected]