PkgRadar

Go modules · proxy.golang.org

github.com/kubeshop/testkube

Go Generate Shell: //go:generate directive shells out to curl/wget/bash — runs during `go generate`.

Why PkgRadar flagged v1.17.69-beta048.0.20260612214229-cf7d87f6539e

SeveritySignalEvidence
mediumGo Generate Shell//go:generate directive shells out to curl/wget/bash — runs during `go generate`. · github.com/kubeshop/[email protected]/pkg/api/v1/testkube/gen.go
mediumRemote Payloadmatched "curl " · github.com/kubeshop/[email protected]/cmd/kubectl-testkube/commands/common/install_source.go
mediumRemote Payloadmatched "raw.githubusercontent.com" · github.com/kubeshop/[email protected]/cmd/kubectl-testkube/commands/init.go
mediumRemote Payloadmatched "wget " · github.com/kubeshop/[email protected]/cmd/tcl/devbox-mutating-webhook/main.go
mediumRemote Payloadmatched "wget " · github.com/kubeshop/[email protected]/cmd/tcl/kubectl-testkube/devbox/devutils/agent.go
mediumRemote Payloadmatched "wget " · github.com/kubeshop/[email protected]/cmd/tcl/kubectl-testkube/devbox/devutils/gitopsagent.go
mediumRemote Payloadmatched "wget " · github.com/kubeshop/[email protected]/cmd/tcl/kubectl-testkube/devbox/devutils/runneragent.go
mediumRemote Payloadmatched "wGet " · github.com/kubeshop/[email protected]/pkg/cloud/data/testworkflow/commands.go
mediumRemote Payloadmatched "raw.githubusercontent.com" · github.com/kubeshop/[email protected]/pkg/marketplace/client.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v1.17.69-beta048.0.20260612214229-cf7d87f6539eHigh risk1112026-06-13
v1.17.69-beta048.0.20260611205439-88c5f2e9e4f0High risk1112026-06-12
v1.17.69-beta048.0.20260611180718-3b133e307e5aHigh risk1112026-06-12
v1.17.69-beta048.0.20260611100505-23ac7947738fHigh risk1112026-06-12
v1.17.69-beta048.0.20260611172141-c679b457bd6bHigh risk1112026-06-12
v1.17.69-beta048.0.20260611052200-7999067f46a5High risk1112026-06-12
v1.17.69-beta048.0.20260610214632-257b29bb3173High risk1112026-06-11
v1.17.69-beta048.0.20260609135127-e758d6127c54High risk1112026-06-10
v1.17.69-beta048.0.20260609091944-ce5765819e55High risk1112026-06-10
v1.17.69-beta048.0.20260605151514-f52c266b14e6High risk1112026-06-06
v1.17.69-beta048.0.20260605110729-0248a18e9be2High risk1112026-06-06
v1.17.69-beta048.0.20260605103226-280d70e4452fHigh risk1112026-06-06
v1.17.69-beta048.0.20260604150821-a203c047af5eHigh risk1112026-06-05
v1.17.69-beta048.0.20260603123424-3d4e91196a6aHigh risk1112026-06-04
v1.17.69-beta048.0.20260528072805-4a0233ff1e1aHigh risk1112026-05-30
v1.17.69-beta048.0.20260529100152-e74ace210c94Review1112026-05-30
v1.17.69-beta048.0.20260528135059-1029379db2ecReview1112026-05-29
v1.17.69-beta048.0.20260528125459-a81602a41f74Review1112026-05-29

Block this in CI

PkgRadar gates github.com/kubeshop/testkube (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/kubeshop/[email protected]
Start free — 25 scans / moView full evidence