Go modules · proxy.golang.org
github.com/stacklok/toolhive-catalog
Remote Payload: matched "raw.githubusercontent.com"
Why PkgRadar flagged v0.20260602.0
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/stacklok/[email protected]/cmd/catalog/sync_skills.go |
| medium | Remote Payload | matched "raw.githubusercontent.com" · github.com/stacklok/[email protected]/internal/registry/builder.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.20260602.0 | Review | 42 | 2026-06-03 |
v0.20260601.0 | Review | 42 | 2026-06-02 |
Block this in CI
pkgradar gate --ecosystem go github.com/stacklok/[email protected]