Go modules · proxy.golang.org

github.com/aliasfoxkde/atheon

Remote Payload

Why PkgRadar flagged v1.3.0-enhanced.0.20260623072814-10bbf3c2e360

Severity	Signal	Evidence
medium	Remote Payload	github.com/aliasfoxkde/[email protected]/cmd/atheon/main.go

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`v1.3.0-enhanced.0.20260623072814-10bbf3c2e360`	Review	12	2026-06-24
`v0.4.0`	Review	12	2026-06-24
`v1.3.0-enhanced`	Review	12	2026-06-24
`v1.2.0-enhanced.0.20260620023535-2c45e7a2e5f6`	Low risk	0	2026-06-21
`v1.0.1`	Low risk	0	2026-06-21
`v0.0.6`	Low risk	0	2026-06-21
`v1.2.0-enhanced`	Low risk	0	2026-06-21
`v1.0.2`	Low risk	0	2026-06-20
`v0.6.0`	Low risk	0	2026-06-20
`v0.5.0`	Low risk	0	2026-06-20
`v0.0.7`	Low risk	0	2026-06-20

Block this in CI

PkgRadar gates github.com/aliasfoxkde/atheon (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/aliasfoxkde/[email protected]