Go modules · proxy.golang.org
github.com/apache/spamassassin
Remote Payload: matched "curl "
Why PkgRadar flagged v0.0.0-20260528024403-01a38e827c86
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/apache/[email protected]/tools/github/apply_pr.sh |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20260615154305-2eab69b4525f | Low risk | 0 | 2026-06-16 |
v0.0.0-20260613004949-65828d2b9003 | Low risk | 0 | 2026-06-14 |
v0.0.0-20260611132811-3d225ac78de2 | Low risk | 0 | 2026-06-12 |
v0.0.0-20260610083016-4ee41d26d9c8 | Low risk | 0 | 2026-06-11 |
v0.0.0-20260607030053-175224e173f4 | Low risk | 0 | 2026-06-08 |
v0.0.0-20260605134945-048ded143820 | Low risk | 0 | 2026-06-06 |
v0.0.0-20260605080811-cf01d6f54300 | Low risk | 0 | 2026-06-06 |
v0.0.0-20260604205645-04972c580aae | Low risk | 0 | 2026-06-05 |
v0.0.0-20260604023803-6188f4a09e4d | Low risk | 0 | 2026-06-05 |
v0.0.0-20260603173405-e2b9158e4448 | Low risk | 0 | 2026-06-04 |
v0.0.0-20260603141002-285521ca2988 | Low risk | 0 | 2026-06-04 |
v0.0.0-20260603085454-16edcee57acc | Low risk | 0 | 2026-06-04 |
v0.0.0-20260603023743-275459eb643b | Low risk | 0 | 2026-06-04 |
v0.0.0-20260602145147-3b0fb2813d85 | Low risk | 0 | 2026-06-03 |
v0.0.0-20260601171137-6a142193622b | Low risk | 0 | 2026-06-02 |
v0.0.0-20260601083018-474f8e12950f | Low risk | 0 | 2026-06-02 |
v0.0.0-20260531044236-97e5161f2ea9 | Low risk | 0 | 2026-06-01 |
v0.0.0-20260530183337-e9b3b3a8cf78 | Low risk | 0 | 2026-05-31 |
v0.0.0-20260529164739-d82155a6371c | Low risk | 0 | 2026-05-30 |
v0.0.0-20260529083022-4c6aa6bd1e2c | Low risk | 0 | 2026-05-30 |
v0.0.0-20260529023741-d79cd2ae92fc | Low risk | 0 | 2026-05-30 |
v0.0.0-20260528024403-01a38e827c86 | Review | 12 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem go github.com/apache/[email protected]