Go modules · proxy.golang.org
github.com/chenhg5/cc-connect
Remote Payload: matched "curl "
Why PkgRadar flagged v1.3.4-0.20260616082126-cf2d4f1b815a
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/chenhg5/[email protected]/agent/qoder/qoder.go |
| medium | Remote Payload | matched "github.com/\" + githubRepo + \"/releases/download" · github.com/chenhg5/[email protected]/cmd/cc-connect/update.go |
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/chenhg5/[email protected]/core/provider_presets.go |
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/chenhg5/[email protected]/core/skill_presets.go |
| medium | Remote Payload | matched "github.com/chenhg5/cc-connect/releases/download" · github.com/chenhg5/[email protected]/core/updater.go |
| medium | Remote Payload | matched "curl " · github.com/chenhg5/[email protected]/platform/feishu/feishu.go |
| medium | Remote Payload | matched "cUrl " · github.com/chenhg5/[email protected]/platform/wecom/wecom.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v1.3.4-0.20260616082126-cf2d4f1b815a | High risk | 89 | 2026-06-17 |
v1.3.4-0.20260616021057-ac037338cb7f | High risk | 89 | 2026-06-17 |
v1.3.3 | High risk | 89 | 2026-06-16 |
v1.3.3-beta.5 | High risk | 89 | 2026-06-16 |
v1.3.3-beta.4.0.20260604090101-eb86866420f3 | High risk | 84 | 2026-06-05 |
v0.0.0-20260604021734-f86c26634b2f | High risk | 84 | 2026-06-05 |
v1.3.3-beta.4.0.20260602022322-39df0842e79a | High risk | 72 | 2026-06-03 |
v1.3.3-beta.1.0.20260506075118-9090e7c8f1f8 | High risk | 72 | 2026-06-03 |
v1.3.3-beta.4.0.20260528020751-d66540236f00 | Review | 72 | 2026-05-31 |
Block this in CI
pkgradar gate --ecosystem go github.com/chenhg5/[email protected]