Go modules · proxy.golang.org
github.com/maksemen2/trustmod
Remote Payload: matched "curl\n "
Why PkgRadar flagged v0.1.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl\n " · github.com/maksemen2/[email protected]/internal/cli/init.go |
| medium | Remote Payload | matched "curl " · github.com/maksemen2/[email protected]/internal/packagescan/rules.go |
| medium | Remote Payload | matched "api.github.com/graphql" · github.com/maksemen2/[email protected]/internal/provider/github/client.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.1.0 | High risk | 41 | 2026-05-31 |
v0.0.0-20260530190609-6972790fde28 | High risk | 41 | 2026-05-31 |
v0.0.0-20260530181503-c1a0a9850d14 | High risk | 41 | 2026-05-31 |
v0.0.0-20260530173013-8d7d209ed807 | High risk | 41 | 2026-05-31 |
Block this in CI
pkgradar gate --ecosystem go github.com/maksemen2/[email protected]