PkgRadar

Go modules · proxy.golang.org

github.com/vito/dang/v2

Go Generate Shell, Obfuscation Density, Go Cgo Preamble

Why PkgRadar flagged v2.1.2-0.20260701222516-469d2dff5415

SeveritySignalEvidence
mediumGo Generate Shell

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v2.1.2-0.20260701222516-469d2dff5415Review152026-07-03
v2.1.2-0.20260630144844-2d4f6c16acedReview152026-07-03
v2.1.0Low risk02026-06-18
v2.0.3-0.20260617050800-a59661e1b2bbLow risk02026-06-18
v2.0.3-0.20260617050237-c03f70090ae8Low risk02026-06-18
v2.0.3-0.20260616005952-fd0fc4f72aa1Low risk02026-06-17
v2.0.1Low risk02026-06-11
v2.0.0Low risk02026-06-11

Block this in CI

PkgRadar gates github.com/vito/dang/v2 (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/vito/dang/[email protected]
github.com/vito/dang/v2 — Go modules security scan | PkgRadar