Go modules · proxy.golang.org
github.com/rgooch/dominator
Remote Payload: matched "cUrl "
Why PkgRadar flagged v0.0.0-20260614165530-635c2c497434
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "cUrl " · github.com/rgooch/[email protected]/imagebuilder/builder/api.go |
| medium | Remote Payload | matched "cUrl " · github.com/rgooch/[email protected]/imagebuilder/builder/load.go |
| medium | Remote Payload | matched "cURL " · github.com/rgooch/[email protected]/lib/gitutil/api.go |
| medium | Remote Payload | matched "cURL " · github.com/rgooch/[email protected]/lib/gitutil/shallowClone.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.0-20260614165530-635c2c497434 | High risk | 68 | 2026-06-16 |
v0.0.0-20260614024035-5be830569cc6 | High risk | 68 | 2026-06-15 |
v0.0.0-20260611225313-13675a6d9d7d | High risk | 68 | 2026-06-14 |
v0.0.0-20260601194134-11b15cdff48e | High risk | 68 | 2026-06-05 |
v0.0.0-20260527022541-52381cf1794d | Review | 68 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem go github.com/rgooch/[email protected]