PkgRadar

Go modules · proxy.golang.org

github.com/mengelbart/mrtp

Tls Verification Disabled: matched "InsecureSkipVerify: true"

Why PkgRadar flagged v0.0.0-20260619114802-cac88f5c012a

SeveritySignalEvidence
mediumTls Verification Disabledmatched "InsecureSkipVerify: true" · github.com/mengelbart/[email protected]/internal/quictransport/conn.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.0-20260619114802-cac88f5c012aReview122026-06-20
v0.0.0-20260619113244-b83ff6ce2726Review122026-06-20
v0.0.0-20260619112502-c74dbf5f9ea9Review122026-06-20
v0.0.0-20260619112523-e91ac9f5970aReview122026-06-20
v0.0.0-20260619103655-63b5e08aaff3Review122026-06-20
v0.0.0-20260619103143-3306b0081b69Review122026-06-20
v0.0.0-20260606192951-5534fec2e7c7Low risk02026-06-10
v0.0.0-20260604115307-6299100dd0e3Low risk02026-06-06
v0.0.0-20260529085834-80b148996e33Low risk02026-06-01

Block this in CI

PkgRadar gates github.com/mengelbart/mrtp (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/mengelbart/[email protected]
Start free — 25 scans / moView full evidence