Go modules · proxy.golang.org
github.com/rancher/ecm-distro-tools
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged v0.72.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/rancher/[email protected]/mgmt/mgmt.go |
| medium | Remote Payload | matched "curl " · github.com/rancher/[email protected]/release/k3s/k3s.go |
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/rancher/[email protected]/release/kdm/rke2_charts.go |
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/rancher/[email protected]/release/release.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.72.0 | High risk | 53 | 2026-06-04 |
v0.71.0 | High risk | 53 | 2026-06-04 |
Block this in CI
pkgradar gate --ecosystem go github.com/rancher/[email protected]