Go modules · proxy.golang.org
github.com/pulumi/pulumi/pkg/v3
Remote Payload: matched "curl "
Why PkgRadar flagged v3.246.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.com/pulumi/pulumi/pkg/[email protected]/cmd/pulumi/pulumi.go |
| medium | Go Mod Replace Local | go.mod replace directive redirects to a local filesystem path — non-portable / dev-time only. · github.com/pulumi/pulumi/pkg/[email protected]/go.mod |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v3.246.0 | Review | 27 | 2026-06-13 |
v3.245.1-0.20260609104754-9623e2fac984 | Review | 27 | 2026-06-10 |
v3.245.1-0.20260609115539-7308f65a7562 | Review | 27 | 2026-06-10 |
v3.245.1-0.20260609083152-e5772627c2b0 | Review | 27 | 2026-06-10 |
v3.245.1-0.20260607095642-1ea24115892e | Review | 27 | 2026-06-09 |
v3.245.1-0.20260605130235-5de910beeb8d | Review | 27 | 2026-06-06 |
v3.245.1-0.20260605100848-9758ae9b7834 | Review | 27 | 2026-06-06 |
v3.245.1-0.20260605073558-62dc6d4711f9 | Review | 27 | 2026-06-06 |
v3.245.1-0.20260605091308-2cd4a00862c0 | Review | 27 | 2026-06-06 |
v3.243.1-0.20260602141017-6011fc3842f4 | Review | 27 | 2026-06-03 |
v3.243.1-0.20260602084112-bfe1342e84a5 | Review | 27 | 2026-06-03 |
v3.243.1-0.20260601140838-7ee50f74df59 | Review | 27 | 2026-06-02 |
v3.243.1-0.20260601094256-246a8ce26388 | Review | 27 | 2026-06-02 |
v3.212.1-0.20251216094313-0b06a43beaa2 | Review | 34 | 2026-06-02 |
v3.243.1-0.20260528163148-2c171966a134 | Review | 27 | 2026-05-29 |
Block this in CI
pkgradar gate --ecosystem go github.com/pulumi/pulumi/pkg/[email protected]