@paretools/go MIT 32 versions

@paretools/go

npm Repository Homepage

MCP server for Go — structured build, test, vet, and module data for AI agents

32

Versions

MIT

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

dave212

Keywords

mcpmcp-servermodel-context-protocolstructured-outputaiai-agentclaudecursorcopilottoken-efficientdevtoolscligogolanggofmtgo-test

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
typosquat	typosquat.levenshtein:got	AI (typosquat): @paretools/go is a Go-language MCP server tool, not a typosquat of 'got'; scoped package with SLSA provenance.	ai	2026/05/15
typosquat	typosquat.levenshtein:glob	AI (typosquat): 2-edit distance false positive; package is a Go MCP server, unrelated to 'glob'.	ai	2026/05/15
typosquat	typosquat.levenshtein:koa	AI (typosquat): 2-edit distance false positive; package is a Go MCP server, unrelated to 'koa'.	ai	2026/05/15
typosquat	typosquat.levenshtein:pg	AI (typosquat): 2-edit distance false positive; package is a Go MCP server, unrelated to 'pg'.	ai	2026/05/15
typosquat	typosquat.levenshtein:qs	AI (typosquat): 2-edit distance false positive; package is a Go MCP server, unrelated to 'qs'.	ai	2026/05/15
typosquat	typosquat.levenshtein:joi	AI (typosquat): 2-edit distance false positive; package is a Go MCP server, unrelated to 'joi'.	ai	2026/05/15
typosquat	typosquat.levenshtein:zod	AI (typosquat): 2-edit distance false positive; package is a Go MCP server, unrelated to 'zod'.	ai	2026/05/15

Versions (showing 32 of 32)

Version	Deps	Published
0.19.1	3 / 4	2026-05-07
0.18.1	3 / 4	2026-04-29
0.18.0	3 / 4	2026-04-12
0.17.0	3 / 4	2026-04-08
0.16.3	3 / 4	2026-04-08
0.16.2	3 / 4	2026-04-05
0.16.1	3 / 4	2026-03-27
0.16.0	3 / 4	2026-03-26
0.15.0	3 / 4	2026-03-13
0.14.2	3 / 4	2026-03-11
0.14.1	3 / 4	2026-03-07
0.14.0	3 / 4	2026-03-07
0.13.1	3 / 4	2026-03-05
0.13.0	3 / 4	2026-02-26
0.12.0	3 / 4	2026-02-23
0.11.0	3 / 4	2026-02-22
0.10.2	3 / 4	2026-02-19
0.10.1	3 / 4	2026-02-19
0.10.0	3 / 4	2026-02-19
0.9.0	3 / 4	2026-02-17
0.8.5	3 / 4	2026-02-16
0.8.4	3 / 4	2026-02-16
0.8.3	3 / 4	2026-02-15
0.8.2	3 / 4	2026-02-14
0.8.1	3 / 4	2026-02-14
0.8.0	3 / 4	2026-02-14
0.7.1	3 / 4	2026-02-13
0.7.0	3 / 4	2026-02-13
0.6.0	3 / 4	2026-02-12
0.5.0	3 / 4	2026-02-10
0.3.0	3 / 4	2026-02-10
0.2.0	3 / 4	2026-02-10

v0.19.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.18.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.18.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.17.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.16.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.16.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.16.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.16.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.15.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.14.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.14.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.14.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.13.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.13.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.12.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.11.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.9.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.8.5

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.8.4

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.8.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.8.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.8.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.8.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.7.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.7.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.6.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.5.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.3.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.2.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'got' typosquat

Package name '@paretools/go' is 1 edit(s) away from popular package 'got'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.