Go modules · proxy.golang.org
github.com/docker/cagent
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged v1.72.1-0.20260602170615-e16fa6017e1b
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/docker/[email protected]/pkg/config/sources.go |
| medium | Remote Payload | matched "github.com/%s/%s/releases/download" · github.com/docker/[email protected]/pkg/toolinstall/installer.go |
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/docker/[email protected]/pkg/toolinstall/registry.go |
| medium | Remote Payload | matched "cURL " · github.com/docker/[email protected]/pkg/tools/builtin/openapi/openapi.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v1.72.1-0.20260602170615-e16fa6017e1b | High risk | 53 | 2026-06-03 |
v1.72.0 | High risk | 53 | 2026-06-03 |
v1.70.3-0.20260601154959-7b77592259a1 | High risk | 53 | 2026-06-02 |
v1.70.2 | High risk | 53 | 2026-06-02 |
v1.70.2-0.20260601115326-8de9c75ac023 | High risk | 53 | 2026-06-02 |
v1.70.1 | High risk | 53 | 2026-06-02 |
v1.69.0 | Review | 53 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem go github.com/docker/[email protected]