Go modules · proxy.golang.org

github.com/kN6jq/nuclei-sdk

DNS / OAST exfiltration: matched "oast.pro"

Why PkgRadar flagged v0.1.1-0.20260607051631-a8f658621457

Severity	Signal	Evidence
high	DNS / OAST exfiltration	matched "oast.pro" · github.com/kn6jq/[email protected]/interactsh/doc.go
high	DNS / OAST exfiltration	matched "oast.pro" · github.com/kn6jq/[email protected]/interactsh/options.go
high	DNS / OAST exfiltration	matched "oast.pro" · github.com/kn6jq/[email protected]/template/execute.go

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`v0.1.1-0.20260607051631-a8f658621457`	High risk	50	2026-06-08
`v0.0.0-20260529154517-2ea6504b24ef`	Low risk	0	2026-05-30

Block this in CI

PkgRadar gates github.com/kN6jq/nuclei-sdk (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/kN6jq/[email protected]