Go modules · proxy.golang.org
github.com/msuozzo/oss-rebuild
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged v0.0.0-20260531015456-0ee3543ddf4f
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/msuozzo/[email protected]/internal/timewarp/timewarp.go |
| medium | Remote Payload | matched "curl " · github.com/msuozzo/[email protected]/pkg/build/gcb/planner.go |
| medium | Remote Payload | matched "curl " · github.com/msuozzo/[email protected]/pkg/build/local/build_planner.go |
| medium | Remote Payload | matched "curl " · github.com/msuozzo/[email protected]/pkg/build/local/run_planner.go |
| medium | Remote Payload | matched "wget " · github.com/msuozzo/[email protected]/pkg/rebuild/cratesio/strategy.go |
| medium | Remote Payload | matched "wget " · github.com/msuozzo/[email protected]/pkg/rebuild/debian/strategy.go |
| medium | Remote Payload | matched "github.com/adoptium/temurin8-binaries/releases/download" · github.com/msuozzo/[email protected]/pkg/rebuild/maven/jdk_urls.go |
| medium | Remote Payload | matched "wget " · github.com/msuozzo/[email protected]/pkg/rebuild/maven/strategy.go |
| medium | Remote Payload | matched "wget " · github.com/msuozzo/[email protected]/pkg/rebuild/npm/strategy.go |
| medium | Remote Payload | matched "wget " · github.com/msuozzo/[email protected]/pkg/rebuild/rubygems/strategy.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20260531015456-0ee3543ddf4f | High risk | 100 | 2026-06-03 |
v0.0.0-20260528175235-173fc703a408 | Review | 100 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem go github.com/msuozzo/[email protected]