PkgRadar

Go modules · proxy.golang.org

github.com/grpc/grpc-go

Tls Verification Disabled

Why PkgRadar flagged v1.83.0-dev.0.20260622053734-8d66cfc36ad1

SeveritySignalEvidence
mediumTls Verification Disabledgithub.com/grpc/[email protected]/internal/credentials/xds/handshake_info.go
mediumTls Verification Disabledgithub.com/grpc/[email protected]/internal/xds/bootstrap/tlscreds/bundle.go

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v1.83.0-dev.0.20260622053734-8d66cfc36ad1Review242026-06-23
v0.0.0-20260622053734-8d66cfc36ad1Review242026-06-23
v1.2.1-0.20181012222227-1ca9df53a7c8Low risk02026-06-16
v1.83.0-dev.0.20260612120310-5c7f93679ec9Low risk02026-06-13
v1.83.0-dev.0.20260611185230-9a130aad0775Low risk02026-06-13
v0.0.0-20260611185230-9a130aad0775Low risk02026-06-13
v0.0.0-20260609194428-f1864955bbb4Low risk02026-06-12
v1.83.0-dev.0.20260609194428-f1864955bbb4Low risk02026-06-11
v1.0.6-0.20170127152601-21f8ed309495Low risk02026-06-11
v0.0.0-20260608101438-cd257117bbdaLow risk02026-06-09
v1.83.0-dev.0.20260608101438-cd257117bbdaLow risk02026-06-09
v1.82.0-dev.0.20260605180800-0f3086db7a75Low risk02026-06-06
v1.82.0-dev.0.20260604061855-fef07fbb2b94Low risk02026-06-05
v0.0.0-20260604061855-fef07fbb2b94Low risk02026-06-05
v1.82.0-dev.0.20260603173933-91dd64f4b83cLow risk02026-06-04
v0.0.0-20260603173933-91dd64f4b83cLow risk02026-06-04
v0.0.0-20260602085857-adc97de9521aLow risk02026-06-04
v1.82.0-dev.0.20260601113647-57c9ff14e05bLow risk02026-06-02
v1.82.0-dev.0.20260527195005-b58f32d9ff07Low risk02026-05-30

Block this in CI

PkgRadar gates github.com/grpc/grpc-go (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/grpc/[email protected]
Start free — 25 scans / moView full evidence