PkgRadar

Go modules · proxy.golang.org

github.com/gocodealone/libsignal-go

Shell Credential File Read

Why PkgRadar flagged v0.2.0

SeveritySignalEvidence
highShell Credential File Read
highShell Credential File Read

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.2.0High risk502026-07-01
v0.3.0High risk502026-07-01
v0.1.1-0.20260614154229-ad86837425dbLow risk02026-06-15
v0.1.1-0.20260614160058-fe402973c57cLow risk02026-06-15
v0.1.0Low risk02026-06-15

Block this in CI

PkgRadar gates github.com/gocodealone/libsignal-go (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/gocodealone/[email protected]
github.com/gocodealone/libsignal-go — Go modules security scan | PkgRadar