PkgRadar

Go modules · proxy.golang.org

github.com/helixml/helix

Remote Payload: matched "cURL "

Why PkgRadar flagged v0.0.0-test-e2e.0.20260611171500-a5d6ede64c0e

SeveritySignalEvidence
mediumRemote Payloadmatched "cURL " · github.com/helixml/[email protected]/api/pkg/cli/spectask/benchmark_cmd.go
mediumRemote Payloadmatched "cURL " · github.com/helixml/[email protected]/api/pkg/cli/spectask/exec_cmd.go
mediumRemote Payloadmatched "cURL " · github.com/helixml/[email protected]/api/pkg/cli/spectask/latency_cmd.go
mediumRemote Payloadmatched "curl " · github.com/helixml/[email protected]/api/pkg/services/sample_project_code_service.go
mediumRemote Payloadmatched "cURL " · github.com/helixml/[email protected]/api/pkg/session/mcp_server.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.0-test-e2e.0.20260611171500-a5d6ede64c0eHigh risk652026-06-12
v0.0.0-20260611171500-a5d6ede64c0eHigh risk652026-06-12
v0.0.0-test-e2e.0.20260610184606-b8cb8e230d04High risk652026-06-11
v0.0.0-20260610184606-b8cb8e230d04High risk652026-06-11
v0.0.0-20260610162524-75e82b14b551High risk652026-06-11
v0.0.0-test-e2e.0.20260606121539-796991763f4aHigh risk652026-06-07
v0.0.0-test-e2e.0.20260603122015-357c8c159705High risk792026-06-04
v0.0.0-test-e2e.0.20260602181736-3ebeec2b1913High risk792026-06-03
v0.0.0-test-e2e.0.20260601163546-92b4501e202fHigh risk792026-06-03
v0.0.0-20260601163546-92b4501e202fHigh risk792026-06-03
v0.0.0-test-e2e.0.20260530063131-bf05ff095a45High risk792026-05-31
v0.0.0-20260530063131-bf05ff095a45High risk792026-05-31

Block this in CI

PkgRadar gates github.com/helixml/helix (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/helixml/[email protected]
Start free — 25 scans / moView full evidence