Go modules · proxy.golang.org
github.com/formancehq/payments
Remote Payload: matched "cURL "
Why PkgRadar flagged v0.0.0-20260612142110-8c3a622bf113
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "cURL " · github.com/formancehq/[email protected]/internal/connectors/engine/engine.go |
| medium | Remote Payload | matched "cURL " · github.com/formancehq/[email protected]/internal/connectors/engine/module.go |
| medium | Remote Payload | matched "cURL " · github.com/formancehq/[email protected]/internal/connectors/engine/utils/utils.go |
| medium | Remote Payload | matched "cURL " · github.com/formancehq/[email protected]/internal/connectors/engine/workflow/workflow.go |
| medium | Go Mod Replace Local | go.mod replace directive redirects to a local filesystem path — non-portable / dev-time only. · github.com/formancehq/[email protected]/go.mod |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20260612142110-8c3a622bf113 | High risk | 58 | 2026-06-13 |
v0.0.0-20260612094403-051060c12117 | High risk | 58 | 2026-06-13 |
v0.0.0-20260610082407-b458f7dc5827 | High risk | 58 | 2026-06-11 |
v0.0.0-20260609095316-0a97064df964 | High risk | 58 | 2026-06-10 |
v0.0.0-20260608120953-d214143138f8 | High risk | 58 | 2026-06-10 |
v0.0.0-20260605131309-b251598c4e7d | High risk | 58 | 2026-06-07 |
v0.0.0-20260528152536-b6c87aa17331 | Review | 58 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem go github.com/formancehq/[email protected]