Go modules · proxy.golang.org
github.com/picosh/pico
Remote Payload: matched "curl "
Why PkgRadar flagged v1.13.2-0.20260531140231-e8485481b90f
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/picosh/[email protected]/pkg/apps/pastes/api.go |
| medium | Remote Payload | matched "curl " · github.com/picosh/[email protected]/pkg/apps/prose/api.go |
| medium | Remote Payload | matched "curl " · github.com/picosh/[email protected]/pkg/filehandlers/imgs/handler.go |
| medium | Remote Payload | matched "curl " · github.com/picosh/[email protected]/pkg/filehandlers/post_handler.go |
| medium | Remote Payload | matched "curl " · github.com/picosh/[email protected]/pkg/shared/config.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v1.13.2-0.20260531140231-e8485481b90f | High risk | 55 | 2026-06-06 |
Block this in CI
pkgradar gate --ecosystem go github.com/picosh/[email protected]