PkgRadar

Go modules · proxy.golang.org

github.com/roshbhatia/sysinit

Remote Payload: matched "curl "

Why PkgRadar flagged v0.0.0-20260528072641-9cdf288eab8d

SeveritySignalEvidence
mediumRemote Payloadmatched "curl " · github.com/roshbhatia/[email protected]/hack/update-claude-code.sh
mediumRemote Payloadmatched "curl " · github.com/roshbhatia/[email protected]/hack/update-openspec.sh
mediumRemote Payloadmatched "curl " · github.com/roshbhatia/[email protected]/hack/update-pi.sh

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.0-20260603005925-91d4f4115e3eLow risk02026-06-04
v0.0.0-20260602192033-534caca20af2Low risk02026-06-03
v0.0.0-20260602005358-0fe6ef797cb5Low risk02026-06-03
v0.0.0-20260601194429-c32e75fffc7bLow risk02026-06-02
v0.0.0-20260601171311-36f33ebc06c4Low risk02026-06-02
v0.0.0-20260601161711-362a031912f6Low risk02026-06-02
v0.0.0-20260601161111-6c130eb04786Low risk02026-06-02
v0.0.0-20260601140937-051a8f4995f0Low risk02026-06-02
v0.0.0-20260601075331-1ebe28ef462aLow risk02026-06-02
v0.0.0-20260601005329-708d8382aebfLow risk02026-06-02
v0.0.0-20260531183100-0509e19e75a2Low risk02026-06-01
v0.0.0-20260531123447-f94f53eab91fLow risk02026-06-01
v0.0.0-20260531072548-f20f4b686cc6Low risk02026-06-01
v0.0.0-20260531005104-2350ac0d69f6Low risk02026-06-01
v0.0.0-20260530182958-3a1d64221ec7Low risk02026-05-31
v0.0.0-20260530123142-f96fbcc9f9dbLow risk02026-05-31
v0.0.0-20260530070720-ce2ef5426cc5Low risk02026-05-31
v0.0.0-20260530004716-10ef496bf5deLow risk02026-05-31
v0.0.0-20260529185800-a90748250ba1Low risk02026-05-30
v0.0.0-20260529131137-9828cb0984a7Low risk02026-05-30
v0.0.0-20260529072704-fc9a5ebff8cdLow risk02026-05-30
v0.0.0-20260528152456-96757064551eLow risk02026-05-29
v0.0.0-20260528072641-9cdf288eab8dReview362026-05-29
v0.0.0-20260528004502-35c1e68ae96aReview362026-05-29

Block this in CI

PkgRadar gates github.com/roshbhatia/sysinit (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/roshbhatia/[email protected]
Start free — 25 scans / moView full evidence