Go modules · proxy.golang.org
github.com/contenox/runtime
Remote Payload: matched "curl "
Why PkgRadar flagged v0.31.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/contenox/[email protected]/runtime/contenoxcli/init.go |
| medium | Remote Payload | matched "github.com/contenox/runtime/releases/download" · github.com/contenox/[email protected]/runtime/contenoxcli/update_cmd.go |
| medium | Remote Payload | matched "cURL " · github.com/contenox/[email protected]/runtime/runtimetypes/store.go |
| medium | Remote Payload | matched "cURL " · github.com/contenox/[email protected]/runtime/toolsproviderservice/toolsproviderservice.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.31.0 | High risk | 67 | 2026-06-15 |
v0.28.14 | High risk | 55 | 2026-06-12 |
v0.28.13 | High risk | 55 | 2026-06-12 |
v0.28.12 | High risk | 55 | 2026-06-11 |
v0.28.9 | High risk | 55 | 2026-06-10 |
v0.28.6 | High risk | 55 | 2026-06-10 |
v0.28.7 | High risk | 55 | 2026-06-10 |
v0.28.8 | High risk | 55 | 2026-06-10 |
v0.28.5 | High risk | 55 | 2026-06-09 |
v0.28.3 | High risk | 55 | 2026-06-09 |
v0.28.2-0.20260606120416-18ee5b419352 | High risk | 50 | 2026-06-08 |
v0.28.1 | High risk | 50 | 2026-06-08 |
v0.28.0 | High risk | 50 | 2026-06-06 |
v0.25.4 | High risk | 50 | 2026-06-05 |
v0.25.1-0.20260528203417-a5ab004509e9 | Review | 50 | 2026-05-30 |
v0.25.0 | Review | 50 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem go github.com/contenox/[email protected]