Go modules · proxy.golang.org
gitlab.com/gitlab-org/ci-cd/runner-tools/glci
Remote Payload: matched "github.com/docker/buildx/releases/download"
Why PkgRadar flagged v0.6.1-0.20260530130310-80be7bd94fea
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "github.com/docker/buildx/releases/download" · gitlab.com/gitlab-org/ci-cd/runner-tools/[email protected]/pkg/daemon/executor.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.6.1-0.20260530130310-80be7bd94fea | Review | 12 | 2026-06-03 |
v0.6.0 | Review | 12 | 2026-06-03 |
Block this in CI
pkgradar gate --ecosystem go gitlab.com/gitlab-org/ci-cd/runner-tools/[email protected]