Track down component that generates nonsensical github-assets origin URLs

One of our components is generating an increasing set of nonsensical origin URLs for the same file:

github-origins.txt

The URLs look like what would have been generated by a S3 redirect for a temporary object access signature, after a string of redirects, for an object named openbazaar-go-linux-amd64. As the URL varies with the date the signature has been generated, at each visit, we are generating a new origin url.

If something is generating origin URLs post-redirects (the golang lister or loader?), we should probably stop it doing that.