PkgRadar

Go modules · proxy.golang.org

github.com/ardanlabs/service

Shell Credential File Read, Obfuscation Density

Why PkgRadar flagged v0.0.0-20260622172641-43e8ae07abdc

SeveritySignalEvidence
highShell Credential File Readgithub.com/ardanlabs/[email protected]/foundation/keystore/keystore.go

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.0-20260622172641-43e8ae07abdcHigh risk452026-06-24
v0.0.0-20260610140725-dada719f7a85Low risk02026-06-11
v0.0.0-20260609133132-aa99fb46e84eLow risk02026-06-10

Block this in CI

PkgRadar gates github.com/ardanlabs/service (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/ardanlabs/[email protected]
Start free — 25 scans / moView full evidence