Go modules · proxy.golang.org
github.com/georgebuilds/anneal
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged v0.1.14
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/georgebuilds/[email protected]/internal/assets/registry.go |
| medium | Go Mod Replace Local | go.mod replace directive redirects to a local filesystem path — non-portable / dev-time only. · github.com/georgebuilds/[email protected]/go.mod |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.1.14 | Review | 22 | 2026-06-16 |
v0.1.12 | Review | 22 | 2026-06-14 |
v0.1.11 | Review | 12 | 2026-06-13 |
v0.1.6 | Review | 12 | 2026-06-07 |
v0.1.11-0.20260605124935-b8a36a216881 | Review | 12 | 2026-06-07 |
v0.1.9 | Review | 12 | 2026-06-05 |
v0.1.5 | Review | 12 | 2026-06-05 |
v0.1.4 | Review | 12 | 2026-06-04 |
v0.1.4-0.20260602183916-d3c819c55097 | Review | 12 | 2026-06-03 |
v0.1.2 | Review | 12 | 2026-06-03 |
v0.1.1 | Review | 12 | 2026-06-03 |
v0.1.4-0.20260602124004-04cc48ceb626 | Review | 12 | 2026-06-03 |
v0.1.3 | Review | 12 | 2026-06-03 |
v0.1.1-0.20260601142326-13a7c50d0ff2 | Low risk | 0 | 2026-06-02 |
v0.1.0 | Low risk | 0 | 2026-06-02 |
Block this in CI
pkgradar gate --ecosystem go github.com/georgebuilds/[email protected]