Go modules · proxy.golang.org

github.com/deso-protocol/core

Shell Credential File Read

Why PkgRadar flagged v1.2.10-0.20250505212958-ca1497c909cb

Severity	Signal	Evidence
high	Shell Credential File Read	—

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`v1.2.10-0.20250505212958-ca1497c909cb`	High risk	45	2026-06-28
`v1.2.10-0.20241105181757-a8578b2e842c`	High risk	45	2026-06-28
`v1.2.10-0.20230519164515-ef62c2f3de38`	Low risk	0	2026-06-21
`v0.0.0-20230424212246-27e5dfd12988`	Low risk	0	2026-06-08
`v0.0.0-20240422142534-9ddc28de4f4d`	Low risk	0	2026-06-08

Block this in CI

PkgRadar gates github.com/deso-protocol/core (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/deso-protocol/[email protected]