Go modules · proxy.golang.org
github.com/foliagecp/sdk
Remote Payload: matched "curl "
Why PkgRadar flagged v0.2.6-dev27052026
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/foliagecp/[email protected]/tests/soak/_lib/compose.sh |
| medium | Remote Payload | matched "curl " · github.com/foliagecp/[email protected]/tests/soak/leak-hunt/run.sh |
| medium | Remote Payload | matched "curl " · github.com/foliagecp/[email protected]/tests/system/_lib/compose.sh |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.2.9-dev03062026 | Low risk | 0 | 2026-06-05 |
v0.2.7-dev28052026 | Low risk | 0 | 2026-06-02 |
v0.2.6-dev27052026 | Review | 36 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem go github.com/foliagecp/[email protected]