PkgRadar

Go modules · proxy.golang.org

github.com/badmunda05/goinsta

Remote Payload: matched "cURL "

Why PkgRadar flagged v0.0.0-20260607105527-3b9ea4d26646

SeveritySignalEvidence
mediumRemote Payloadmatched "cURL " · github.com/badmunda05/[email protected]/contacts.go
mediumRemote Payloadmatched "cURL " · github.com/badmunda05/[email protected]/media.go
mediumRemote Payloadmatched "cURL " · github.com/badmunda05/[email protected]/search.go
mediumRemote Payloadmatched "cURL " · github.com/badmunda05/[email protected]/types.go
mediumRemote Payloadmatched "cURL " · github.com/badmunda05/[email protected]/users.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.0-20260607105527-3b9ea4d26646High risk602026-06-08
v0.0.0-20260607104557-79267c8bc21dHigh risk602026-06-08
v0.0.0-20260607104514-6bad276dca9dHigh risk602026-06-08
v0.0.0-20260607104527-e42f1a0bbc89High risk482026-06-08
v0.0.0-20260607101227-9bfc0e223968High risk602026-06-08

Block this in CI

PkgRadar gates github.com/badmunda05/goinsta (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/badmunda05/[email protected]
Start free — 25 scans / moView full evidence
github.com/badmunda05/goinsta — Go modules security scan | PkgRadar