Go modules · proxy.golang.org
github.com/gastownhall/beads
Remote Payload: matched "curl "
Why PkgRadar flagged v1.0.6-0.20260615070122-8e18581dc0dd
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/gastownhall/[email protected]/cmd/bd/doctor/version.go |
| medium | Remote Payload | matched "cURL " · github.com/gastownhall/[email protected]/cmd/bd/init.go |
| medium | Remote Payload | matched "curl " · github.com/gastownhall/[email protected]/cmd/bd/init_templates.go |
| medium | Remote Payload | matched "curl " · github.com/gastownhall/[email protected]/cmd/bd/store_factory_nocgo.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v1.0.6-0.20260615070122-8e18581dc0dd | High risk | 48 | 2026-06-16 |
v1.0.6-0.20260613111428-e8ae7a291a39 | High risk | 48 | 2026-06-14 |
v1.0.6-0.20260605211334-0da7f51f3bcb | High risk | 48 | 2026-06-08 |
v1.0.6-0.20260603223755-a5e5cd71f15c | High risk | 48 | 2026-06-05 |
v1.0.6-0.20260531005639-848d0d7b6c93 | High risk | 48 | 2026-06-01 |
v1.0.5 | Review | 48 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem go github.com/gastownhall/[email protected]