PkgRadar

Go modules · proxy.golang.org

github.com/samsaffron/term-llm

Remote Payload: matched "raw.githubusercontent.com"

Why PkgRadar flagged v0.0.290

SeveritySignalEvidence
mediumRemote Payloadmatched "raw.githubusercontent.com" · github.com/samsaffron/[email protected]/internal/skills/github_client.go
mediumRemote Payloadmatched "github.com/%s/%s/releases/download" · github.com/samsaffron/[email protected]/internal/update/upgrade.go
mediumRemote Payloadmatched "raw.githubusercontent.com" · github.com/samsaffron/[email protected]/internal/usage/pricing.go

Scanned versions

VersionVerdictScoreScanned (UTC)
v0.0.290High risk512026-06-16
v0.0.289High risk512026-06-16
v0.0.289-0.20260613062557-a7d3e2d7f8b1High risk512026-06-14
v0.0.288High risk512026-06-14
v0.0.287High risk512026-06-13
v0.0.286High risk512026-06-12
v0.0.284High risk512026-06-11
v0.0.285High risk512026-06-11
v0.0.283High risk512026-06-11
v0.0.281High risk512026-06-10
v0.0.280High risk512026-06-10
v0.0.279High risk512026-06-08
v0.0.278High risk512026-06-08
v0.0.275High risk512026-06-06
v0.0.276High risk512026-06-06
v0.0.274High risk512026-06-04
v0.0.273High risk512026-06-03
v0.0.272High risk512026-06-03
v0.0.270High risk512026-06-02
v0.0.266High risk512026-06-02
v0.0.268High risk512026-06-02
v0.0.264High risk512026-06-02
v0.0.269High risk512026-06-02
v0.0.267High risk512026-06-02
v0.0.265High risk512026-06-02
v0.0.261High risk512026-06-01
v0.0.262High risk512026-06-01
v0.0.263High risk512026-06-01
v0.0.260-0.20260528044725-1124cfcb6e95High risk512026-05-30
v0.0.259High risk512026-05-30
v0.0.258High risk512026-05-30
v0.0.260Review512026-05-30

Block this in CI

PkgRadar gates github.com/samsaffron/term-llm (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/samsaffron/[email protected]
Start free — 25 scans / moView full evidence