Go modules · proxy.golang.org
github.com/pivotal/hammer
Remote Payload: matched "curl "
Why PkgRadar flagged v0.0.0-20211110102846-1a0193f9f5d5
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/pivotal/[email protected]/bosh/runner.go |
| medium | Remote Payload | matched "curl " · github.com/pivotal/[email protected]/cf/login_runner.go |
| medium | Remote Payload | matched "curl " · github.com/pivotal/[email protected]/pks/login_runner.go |
| medium | Remote Payload | matched "curl " · github.com/pivotal/[email protected]/ssh/director_runner.go |
| medium | Remote Payload | matched "curl " · github.com/pivotal/[email protected]/ssh/opsmanager_runner.go |
| medium | Remote Payload | matched "curl " · github.com/pivotal/[email protected]/sshuttle/runner.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20211110102846-1a0193f9f5d5 | Review | 24 | 2026-06-20 |
v0.13.2-0.20260615145807-4baa809b2cc4 | Review | 24 | 2026-06-20 |
v0.0.0-20250519185320-c88449a2fe22 | Review | 24 | 2026-06-20 |
Block this in CI
pkgradar gate --ecosystem go github.com/pivotal/[email protected]