Go modules · proxy.golang.org
github.com/mrz1836/mage-x
Remote Payload: matched "curl "
Why PkgRadar flagged v1.24.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/mrz1836/[email protected]/pkg/mage/agentos.go |
| medium | Remote Payload | matched "Curl " · github.com/mrz1836/[email protected]/pkg/mage/constants.go |
| medium | Remote Payload | matched "curl " · github.com/mrz1836/[email protected]/pkg/mage/lint.go |
| medium | Remote Payload | matched "curl " · github.com/mrz1836/[email protected]/pkg/mage/speckit.go |
| medium | Remote Payload | matched "Curl " · github.com/mrz1836/[email protected]/pkg/mage/speckit_release.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v1.24.0 | High risk | 60 | 2026-05-31 |
Block this in CI
pkgradar gate --ecosystem go github.com/mrz1836/[email protected]