PkgRadar

Go modules · proxy.golang.org

github.com/cpeoples/ansible-security-scanner

DNS / OAST exfiltration: matched "burpcollaborator.net"

Why PkgRadar flagged v0.1.17

SeveritySignalEvidence
highDNS / OAST exfiltrationmatched "burpcollaborator.net" · github.com/cpeoples/[email protected]/src/ansible_security_scanner/patterns/malicious_activity.yml

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.1.17High risk752026-06-07
v0.1.16High risk752026-06-07
v0.1.7High risk752026-06-07
v0.1.14High risk752026-06-07
v0.1.4High risk752026-06-07
v0.1.3High risk752026-06-07
v0.1.5High risk752026-06-07
v0.1.13High risk752026-06-07
v0.1.19High risk752026-06-07
v0.1.10High risk752026-06-07
v0.1.15High risk752026-06-07
v0.1.12High risk752026-06-07
v0.1.21High risk752026-06-07

Block this in CI

PkgRadar gates github.com/cpeoples/ansible-security-scanner (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/cpeoples/[email protected]
Start free — 25 scans / moView full evidence
github.com/cpeoples/ansible-security-scanner — Go modules security scan | PkgRadar