Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go Security Advisories

Loading...
High
GSA_kwCzR0hTQS1jM3E5LWMyN3AtY3c5aM4AA9_J
projectdiscovery/nuclei allows unsigned code template execution through workflows
Ecosystems: go
Packages: github.com/projectdiscovery/nuclei/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 hours ago
Moderate
GSA_kwCzR0hTQS13Nzk5LXY4NWotODhwZ84AA997
Skupper uses a static cookie secret for the openshift oauth-proxy
Ecosystems: go
Packages: github.com/skupperproject/skupper
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: about 19 hours ago
Moderate
GSA_kwCzR0hTQS1xYzZ2LTVnNW0tOGN3Ms4AA95d
ZITADEL Go's GRPC example code vulnerability - GO-2024-2687 HTTP/2 CONTINUATION flood in net/http
Ecosystems: go
Packages: github.com/zitadel/zitadel-go/v3
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 days ago
Moderate
GSA_kwCzR0hTQS01MjQ4LWg0NXAtOXBnd84AA90n
SQL Injection in the KubeClarity REST API
Ecosystems: go
Packages: github.com/openclarity/kubeclarity/backend
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 5 days ago
High
GSA_kwCzR0hTQS0ycW13LXB2ZjctNG13Ns4AA90R
Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions
Ecosystems: go
Packages: github.com/hashicorp/vault
Source: GitHub Advisory Database
Blast Radius: 25.2
Published: 6 days ago
Moderate
GSA_kwCzR0hTQS0yaDJ4LThoaDItbWZxOM4AA90Q
NATS Server and Streaming Server fails to enforce negative user permissions, may allow denied subjects
Ecosystems: go
Packages: github.com/nats-io/nats-server, github.com/nats-io/nats-streaming-server, github.com/nats-io/nats-server/v2
Source: GitHub Advisory Database
Blast Radius: 28.6
Published: 6 days ago
High
GSA_kwCzR0hTQS1xNmhnLTZtOXgtNWc5Y84AA9wr
Evmos vulnerable to exploit of smart contract account and vesting
Ecosystems: go
Packages: github.com/evmos/evmos/v18
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 7 days ago
Moderate
GSA_kwCzR0hTQS01NXI5LTVteDktcXE3cs4AA9ul
Cache driver GetBlob() allows read access to any blob without access control check
Ecosystems: go
Packages: zotregistry.dev/zot, zotregistry.io/zot
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 8 days ago
High
GSA_kwCzR0hTQS1neHJ2LXdmMzUtNjJ3Oc4AA9m8
Bypassing IP allow-lists in traefik via HTTP/3 early data requests in QUIC 0-RTT handshakes
Ecosystems: go
Packages: github.com/traefik/traefik/v3, github.com/traefik/traefik/v2
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: 12 days ago
Moderate
GSA_kwCzR0hTQS1mcXBnLXJxNzYtOTlwcc4AA9m6
Panic in Pipeline when PgConn is busy or closed in github.com/jackc/pgx
Ecosystems: go
Packages: github.com/jackc/pgx/v5
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 12 days ago
Low
GSA_kwCzR0hTQS14cjdxLWp4NG0teDU1bc4AA9m4
Private tokens could appear in logs if context containing gRPC metadata is logged in github.com/grpc/grpc-go
Ecosystems: go
Packages: google.golang.org/grpc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 12 days ago
Moderate
GSA_kwCzR0hTQS1jdnc5LWM1N2gtMzM5N84AA9m1
ZITADEL Vulnerable to Session Information Leakage
Ecosystems: go
Packages: github.com/zitadel/zitadel
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 12 days ago
Moderate
GSA_kwCzR0hTQS1taDU1LWdxdmYteGZ3bc4AA9m0
Denial of service via malicious preflight requests in github.com/rs/cors
Ecosystems: go
Packages: github.com/rs/cors
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 12 days ago
Moderate
GSA_kwCzR0hTQS1ycnFyLTd3NTktNjM3ds4AA9mz
Pomerium exposed OAuth2 access and ID tokens in user info endpoint response
Ecosystems: go
Packages: github.com/pomerium/pomerium
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: 12 days ago
Critical
GSA_kwCzR0hTQS1oZjI5LTloZmgtdzYzas4AA9lz
Gogs allows argument injection during the previewing of changes
Ecosystems: go
Packages: github.com/gogs/gogs
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: 13 days ago
High
GSA_kwCzR0hTQS04bW02LXdtcHAtbW1tM84AA9ly
Gogs allows argument injection during the tagging of a new release
Ecosystems: go
Packages: github.com/gogs/gogs
Source: GitHub Advisory Database
Blast Radius: 13.4
Published: 13 days ago
Critical
GSA_kwCzR0hTQS0ydmdqLTNwdmcteGg0d84AA9lx
Gogs allows deletion of internal files
Ecosystems: go
Packages: github.com/gogs/gogs
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: 13 days ago
Critical
GSA_kwCzR0hTQS1wNjlyLXYzaDQtcmo0Zs4AA9l1
github.com/gogs/gogs affected by CVE-2024-39930
Ecosystems: go
Packages: github.com/gogs/gogs
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: 13 days ago
Moderate
GSA_kwCzR0hTQS1xanZmLTg3NDgtOXc3aM4AA9gc
github.com/google/nftable IP addresses were encoded in the wrong byte order
Ecosystems: go
Packages: github.com/google/nftables
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 14 days ago
High
GSA_kwCzR0hTQS0zNjY5LTcyeDktcjlwM84AA9ct
Potential memory exhaustion attack due to sparse slice deserialization
Ecosystems: go
Packages: github.com/gorilla/schema
Source: GitHub Advisory Database
Blast Radius: 27.3
Published: 16 days ago
Critical
GSA_kwCzR0hTQS05OGoyLTNqM3AtZncyds4AA9cs
Session Middleware Token Injection Vulnerability
Ecosystems: go
Packages: github.com/gofiber/fiber/v2/middleware/session, github.com/gofiber/fiber/v2, github.com/gofiber/fiber
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: 16 days ago
Moderate
GSA_kwCzR0hTQS04NjljLWo3d2MtOGpxds4AA9as
Gin mishandles a wildcard at the end of an origin string
Ecosystems: go
Packages: github.com/gin-contrib/cors, github.com/gin-gonic/gin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 19 days ago
Moderate
GSA_kwCzR0hTQS1oZzU4LXJmMmgtNnJyN84AA9aS
CometBFT is unstability during blocksync when syncing from malicious peer
Ecosystems: go
Packages: github.com/cometbft/cometbft
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 19 days ago
Moderate
GSA_kwCzR0hTQS05cGhtLWZtNTctcmhnOM4AA9X0
Panic when parsing invalid palette-color images in golang.org/x/image
Ecosystems: go
Packages: golang.org/x/image
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 21 days ago
High
GSA_kwCzR0hTQS14ZmhwLWpmOHAtbWg1d84AA9WW
HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation
Ecosystems: go
Packages: github.com/hashicorp/go-getter
Source: GitHub Advisory Database
Blast Radius: 32.6
Published: 22 days ago
Moderate
GSA_kwCzR0hTQS12NnY4LXhqNm0teHdxaM4AA9UK
go-retryablehttp can leak basic auth credentials to log files
Ecosystems: go
Packages: github.com/hashicorp/go-retryablehttp
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: 23 days ago
Moderate
GSA_kwCzR0hTQS05Z3h4LTU4cTYtNDJwN84AA9QI
Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service
Ecosystems: go
Packages: github.com/lightningnetwork/lnd
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: 27 days ago
Low
GSA_kwCzR0hTQS1ncmp2LWdqZ3ItNjZnMs4AA9Px
SpiceDB exclusions can result in no permission returned when permission expected
Ecosystems: go
Packages: github.com/authzed/spicedb
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: 27 days ago
Moderate
GSA_kwCzR0hTQS1ydmo0LXE4cTUtOGdyZs4AA9Pw
ACME DNS: Azure Identity Libraries Elevation of Privilege Vulnerability
Ecosystems: go
Packages: github.com/traefik/traefik/v2, github.com/traefik/traefik/v3
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: 27 days ago
Moderate
GSA_kwCzR0hTQS1odzVmLTZ3dnYteGNyaM4AA9Pu
SFTPGo has insufficient access control for password reset
Ecosystems: go
Packages: github.com/drakkan/sftpgo/v2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 27 days ago
High
GSA_kwCzR0hTQS1jcGN4LXIyZ3EteDg5M84AA9Nu
LocalAI path traversal vulnerability
Ecosystems: go
Packages: github.com/go-skynet/LocalAI
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 28 days ago
Moderate
GSA_kwCzR0hTQS1tOTN3LTRmeHYtcjM1ds4AA9J3
PocketBase performs password auth and OAuth2 unverified email linking
Ecosystems: go
Packages: github.com/pocketbase/pocketbase
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: 29 days ago
Moderate
GSA_kwCzR0hTQS1ocGNnLXhqcTUtZzY2Ns4AA9Jv
Minder affected by denial of service from maliciously configured Git repository
Ecosystems: go
Packages: github.com/stacklok/minder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 29 days ago
Moderate
GSA_kwCzR0hTQS1xNmM3LTU2Y3EtZzJ3bc4AA9I6
Rancher's RKE1 Encryption Config kept in plain-text within cluster AppliedSpec
Ecosystems: go
Packages: github.com/rancher/rancher
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS02NGpxLW03cnEtNzY4aM4AA9I7
Rancher's External RoleTemplates can lead to privilege escalation
Ecosystems: go
Packages: github.com/rancher/rancher
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS02Z3I0LTUydzYtdm1xeM4AA9I5
rke's credentials are stored in the RKE1 Cluster state ConfigMap
Ecosystems: go
Packages: github.com/rancher/rke
Source: GitHub Advisory Database
Blast Radius: 21.2
Published: about 1 month ago
High
GSA_kwCzR0hTQS05Z2hoLW1tY3EtOHBoY84AA9I4
Rancher does not automatically clean up a user deleted or disabled from the configured Authentication Provider
Ecosystems: go
Packages: github.com/rancher/rancher
Source: GitHub Advisory Database
Blast Radius: 14.1
Published: about 1 month ago
High
GSA_kwCzR0hTQS03anA5LXZnbXEtYzhyNc4AA9DO
AdGuardHome privilege escalation vulnerability
Ecosystems: go
Packages: github.com/AdguardTeam/AdGuardHome
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
High
GSA_kwCzR0hTQS04NXJnLThtNmgtODI1cM4AA9DN
Vulnerabilities with the k8sGPT
Ecosystems: go
Packages: github.com/k8sgpt-ai/k8sgpt
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
High
GSA_kwCzR0hTQS13aDc4LTc5NDgtMzU4as4AA9DL
Cilium leaks sensitive information in cilium-bugtool
Ecosystems: go
Packages: github.com/cilium/cilium
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: about 1 month ago
Low
GSA_kwCzR0hTQS0zMmNqLTV3eDQtZ3E4cM4AA8_N
HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims
Ecosystems: go
Packages: github.com/hashicorp/vault
Source: GitHub Advisory Database
Blast Radius: 8.8
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS0yaG1mLTQ2djctdjZmeM4AA8_L
gqlparser denial of service vulnerability via the parserDirectives function
Ecosystems: go
Packages: github.com/vektah/gqlparser, github.com/vektah/gqlparser/v2
Source: GitHub Advisory Database
Blast Radius: 21.9
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS03am13LTgyNTktcTlqeM4AA88x
Traefik has unexpected behavior with IPv4-mapped IPv6 addresses
Ecosystems: go
Packages: github.com/traefik/traefik, github.com/traefik/traefik/v2, github.com/traefik/traefik/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1tNXZ2LTZyNGgtM3ZqOc4AA88w
Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
Ecosystems: nuget, maven, npm, go, pypi
Packages: Microsoft.Identity.Client, com.microsoft.azure:msal4j, @azure/msal-node, Azure.Identity, github.com/Azure/azure-sdk-for-go/sdk/azidentity, com.azure:azure-identity, @azure/identity, azure-identity
Source: GitHub Advisory Database
Blast Radius: 78.6
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS14bW14LTdqcGYtZng0Ms4AA84W
Moby (Docker Engine) is vulnerable to Ambiguous OCI manifest parsing
Ecosystems: go
Packages: github.com/moby/moby, github.com/docker/docker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS05OXBnLWdybTUtcXEzds4AA84V
Docker CLI leaks private registry credentials to registry-1.docker.io
Ecosystems: go
Packages: github.com/docker/cli
Source: GitHub Advisory Database
Blast Radius: 22.8
Published: about 1 month ago
Low
GSA_kwCzR0hTQS12OTk0LWY4dnctZzdqNM4AA84U
`docker cp` allows unexpected chmod of host files in Moby Docker Engine
Ecosystems: go
Packages: github.com/docker/docker
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: about 1 month ago
High
GSA_kwCzR0hTQS04N205LXJ2OHAtcmdtZ84AA84S
go-grpc-compression has a zstd decompression bombing vulnerability
Ecosystems: go
Packages: github.com/mostynb/go-grpc-compression
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS04N3A5LXg3NWgtcDRqMs4AA8wy
Unauthenticated Access to sensitive settings in Argo CD
Ecosystems: go
Packages: github.com/argoproj/argo-cd/v2/server
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS03aHJoLXY2d3AtNTN2d84AA8ww
Evmos allows unvested token delegations
Ecosystems: go
Packages: github.com/evmos/evmos/v6, github.com/evmos/evmos/v7, github.com/evmos/evmos/v8, github.com/evmos/evmos/v9, github.com/evmos/evmos/v10, github.com/evmos/evmos/v11, github.com/evmos/evmos/v12, github.com/evmos/evmos/v13, github.com/evmos/evmos/v14, github.com/evmos/evmos/v15, github.com/evmos/evmos/v16, github.com/evmos/evmos/v17, github.com/evmos/evmos/v18
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS0zY3FmLTk1M3AtaDVjcM4AA8wv
Argo-cd authenticated users can enumerate clusters by name
Ecosystems: go
Packages: github.com/argoproj/argo-cd
Source: GitHub Advisory Database
Blast Radius: 6.4
Published: about 1 month ago
High
GSA_kwCzR0hTQS14Z3I3LWpncTMtbWhtY84AA8wu
Contract balance not updating correctly after interchain transaction
Ecosystems: go
Packages: github.com/evmos/evmos/v6, github.com/evmos/evmos/v7, github.com/evmos/evmos/v8, github.com/evmos/evmos/v9, github.com/evmos/evmos/v10, github.com/evmos/evmos/v11, github.com/evmos/evmos/v12, github.com/evmos/evmos/v13, github.com/evmos/evmos/v14, github.com/evmos/evmos/v15, github.com/evmos/evmos/v16, github.com/evmos/evmos/v17, github.com/evmos/evmos/v18
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: about 1 month ago
Low
GSA_kwCzR0hTQS1weHY4LXFocmgtamM3ds4AA8wK
evmos allows transferring unvested tokens after delegations
Ecosystems: go
Packages: github.com/evmos/evmos/v6, github.com/evmos/evmos/v7, github.com/evmos/evmos/v8, github.com/evmos/evmos/v9, github.com/evmos/evmos/v10, github.com/evmos/evmos/v11, github.com/evmos/evmos/v12, github.com/evmos/evmos/v13, github.com/evmos/evmos/v14, github.com/evmos/evmos/v15, github.com/evmos/evmos/v16, github.com/evmos/evmos/v17
Source: GitHub Advisory Database
Blast Radius: 1.7
Published: about 1 month ago
High
GSA_kwCzR0hTQS1jNzRmLTZtZnctbW00ds4AA8uS
Denial of Service via Zip/Decompression Bomb sent over HTTP or gRPC
Ecosystems: go
Packages: go.opentelemetry.io/collector/config/configgrpc, go.opentelemetry.io/collector/config/confighttp
Source: GitHub Advisory Database
Blast Radius: 18.5
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS1xNW1nLXBjN3Itcjhjcs4AA8tY
Files or Directories Accessible to External Parties in ProjectDiscovery
Ecosystems: go
Packages: github.com/projectdiscovery/interactsh
Source: GitHub Advisory Database
Blast Radius: 20.0
Published: about 1 month ago
High
GSA_kwCzR0hTQS1qOWhmLTk4YzMtd3JtOM4AA8sx
malicious container creates symlink "mtab" on the host External
Ecosystems: go
Packages: github.com/cri-o/cri-o
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: about 1 month ago
High
GSA_kwCzR0hTQS12Nm1nLTdmN3AtcW1xcM4AA8sv
apko Exposure of HTTP basic auth credentials in log output
Ecosystems: go
Packages: chainguard.dev/apko
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 1 month ago
Low
GSA_kwCzR0hTQS12dzYzLTgyNHYtcWYyas4AA8mZ
SQL Injection in Harbor scan log API
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 1.6
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS01NzU3LXY0OWctZjZyN84AA8mY
Open Redirect URL in Harbor
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS04aHFnLXdocnctcHY5Ms4AA8km
Ollama does not validate the format of the digest (sha256 with 64 hex digits)
Ecosystems: go
Packages: github.com/ollama/ollama
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS05NWZyLWNtNG0tcTVwOc4AA8jQ
MinIO information disclosure vulnerability
Ecosystems: go
Packages: github.com/minio/minio
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS04Zm1qLTMzZ3ctZzdwd84AA8i8
Denial of service of Minder Server from maliciously crafted GitHub attestations
Ecosystems: go
Packages: github.com/stacklok/minder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 months ago
Low
GSA_kwCzR0hTQS0zZjY1LW0yMzQtOW14cs4AA8iZ
github.com/huandu/facebook may expose access_token in error message.
Ecosystems: go
Packages: github.com/huandu/facebook/v2
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS1mN2NxLTV2NDMtOHB3cM4AA8hk
Traefik vulnerable to GO issue allowing malformed DNS message to cause infinite loop
Ecosystems: go
Packages: github.com/traefik/traefik, github.com/traefik/traefik/v3, github.com/traefik/traefik/v2
Source: GitHub Advisory Database
Blast Radius: 9.1
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS0yODRjLXg4bTctOXc1aM4AA8gK
Dapr API Token Exposure
Ecosystems: go
Packages: github.com/dapr/dapr
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: about 2 months ago
Critical
GSA_kwCzR0hTQS05NzY2LTUyNzctajVocs4AA8aY
ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache
Ecosystems: go
Packages: github.com/argoproj/argo-cd, github.com/argoproj/argo-cd/v2
Source: GitHub Advisory Database
Blast Radius: 19.7
Published: about 2 months ago
Low
GSA_kwCzR0hTQS0yajZyLTl2djQtNmdmNc4AA8WS
github.com/bincyber/go-sqlcrypter vulnerable to IV collision
Ecosystems: go
Packages: github.com/bincyber/go-sqlcrypter
Source: GitHub Advisory Database
Blast Radius: 1.1
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS1xamN2LXJ4M3YtN212as4AA8WR
github.com/cosmos/ibc-go affected by IBC protocol "Huckleberry" vulnerability
Ecosystems: go
Packages: github.com/cosmos/ibc-go, github.com/cosmos/ibc-go/v2, github.com/cosmos/ibc-go/v3, github.com/cosmos/ibc-go/v4, github.com/cosmos/ibc-go/v5, github.com/cosmos/ibc-go/v6, github.com/cosmos/ibc-go/v7
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS1jcmdjLTI1ODMtcncyN84AA8WN
Stacklok Minder vulnerable to denial of service from maliciously crafted templates
Ecosystems: go
Packages: github.com/stacklok/minder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS14Y3E0LW0ycjMtY21yas4AA8WM
Trivy possibly leaks registry credential when scanning images from malicious registries
Ecosystems: go
Packages: github.com/aquasecurity/trivy
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS0ycmh4LXFoeHAtNWpwd84AA8Qi
Submariner Operator sets unnecessary RBAC permissions in helm charts
Ecosystems: go
Packages: github.com/submariner-io/submariner-operator
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1manc4LTNncDgtNGN2eM4AA8Kw
Denial of service of Minder Server with attacker-controlled REST endpoint
Ecosystems: go
Packages: github.com/stacklok/minder
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 months ago
High
GSA_kwCzR0hTQS14OHhtLXdyanEtNWc1NM4AA8H3
Stakater Forecastle has a directory traversal vulnerability
Ecosystems: go
Packages: github.com/stakater/Forecastle
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS04Zmc3LWhwOTMtcWh2cs4AA8G-
wolfictl leaks GitHub tokens to remote non-GitHub git servers
Ecosystems: go
Packages: github.com/wolfi-dev/wolfictl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1mNm1tLTVmYzctM2czY84AA8GD
goreleaser shows environment by default
Ecosystems: go
Packages: github.com/goreleaser/goreleaser
Source: GitHub Advisory Database
Blast Radius: 21.9
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS12NTU0LXh3Z3ctaGMzd84AA8GA
source-controller leaks Azure Storage SAS token into logs
Ecosystems: go
Packages: github.com/fluxcd/source-controller
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1xanFnLTR3ZzctOTU3aM4AA8FL
azure-file-csi-driver leaks service account tokens in the logs
Ecosystems: go
Packages: sigs.k8s.io/azurefile-csi-driver
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS00dzUzLTZqdnAtZ2c1Ms4AA8Ez
sshpiper's enabling of proxy protocol without proper feature flagging allows faking source address
Ecosystems: go
Packages: github.com/tg123/sshpiper
Source: GitHub Advisory Database
Blast Radius: 1.6
Published: 2 months ago
High
GSA_kwCzR0hTQS1wOTc4LTU2aHEtcjQ5Ms4AA8Ex
Grafana folders admin only permission privilege escalation
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS14NzQ0LW1tOHYtdnBncs4AA8Ew
Grafana Data source and plugin proxy endpoints could leak the authentication cookie to some destination plugins
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1najdtLTg1M3ItMjg5cs4AA8Ev
Grafana when using email as a username can block other users from signing in
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS0yeDZnLWgyaGctcnE4NM4AA8Eu
Grafana Email addresses and usernames can not be trusted
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 10.9
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS0zcDYyLTQyeDctZ3hnNc4AA8Et
Grafana User enumeration via forget password
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS00NzI0LTdqd2MtM2Zwd84AA8Es
Grafana Spoofing originalUrl of snapshots
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: 2 months ago
Critical
GSA_kwCzR0hTQS12cWM0LW1wajgtanhjaM4AA8Er
Grafana Race condition allowing privilege escalation
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 16.6
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1mZjVjLTkzOHctOGM5cc4AA8Eq
Grafana Escalation from admin to server admin when auth proxy is used
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1qdjMyLTU1NzgtcHhqY84AA8Ep
Grafana Data source and plugin proxy endpoints leaking authentication tokens to some destination plugins
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 8.3
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1yaHhqLWdoNDYtanZ3OM4AA8Eo
Grafana Plugin signature bypass
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: 2 months ago
High
GSA_kwCzR0hTQS1teDQ3LTY0OTctM2Z2Ms4AA8En
Grafana account takeover via OAuth vulnerability
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 12.1
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS02M2czLTlqcTMtbWNjds4AA8Em
Grafana API IDOR
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: 2 months ago
High
GSA_kwCzR0hTQS12dzdxLXAycWctNG01Zs4AA8El
Grafana Stored Cross-site Scripting in Unified Alerting
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 12.4
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS14YzNwLTI4aHctcTI0Z84AA8Ek
Grafana proxy Cross-site Scripting
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: 2 months ago
Low
GSA_kwCzR0hTQS04d2poLTU5Y3ctOXhoNM4AA8Ej
Grafana Forward OAuth Identity Token can allow users to access some data sources
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS03NTMzLWM4cXYtam05bc4AA8Ei
Grafana directory traversal for .cvs files
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: 2 months ago
Critical
GSA_kwCzR0hTQS1tcHdwLTQyeDYtNHdteM4AA8Eh
Grafana Fine-grained access control vulnerability
Ecosystems: go
Packages: github.com/grafana/grafana
Source: GitHub Advisory Database
Blast Radius: 15.5
Published: 2 months ago
Low
GSA_kwCzR0hTQS1jOWNwLTljNzUtOXY4Y84AA8Eg
containerd started with non-empty inheritable Linux process capabilities
Ecosystems: go
Packages: github.com/containerd/containerd
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Low
GSA_kwCzR0hTQS1qajU0LTVxMm0tcTdwas4AA8Ef
NATS server TLS missing ciphersuite settings when CLI flags used
Ecosystems: go
Packages: github.com/nats-io/nats-server/v2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
High
GSA_kwCzR0hTQS1oZjU0LWZxMm0tcDl2Ns4AA8Eb
dotmesh arbitrary file read and/or write
Ecosystems: go
Packages: github.com/dotmesh-io/dotmesh
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 months ago
Low
GSA_kwCzR0hTQS1qbXFwLTM3bTUtNDl3aM4AA8EQ
sshproxy vulnerable to SSH option injection
Ecosystems: go
Packages: github.com/cea-hpc/sshproxy
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: 2 months ago
High
GSA_kwCzR0hTQS02d3ZmLWYydnctMzQyNc4AA78t
github.com/containers/image allows unexpected authenticated registry accesses
Ecosystems: go
Packages: github.com/containers/image/v5, github.com/containers/image
Source: GitHub Advisory Database
Blast Radius: 25.8
Published: 2 months ago
Statistics
Advisories: 19,517
Packages: 8,615
Repositories: 570
Ecosystems: 12
Filter by Package
github.com/usememos/memos 59 github.com/grafana/grafana 45 github.com/mattermost/mattermost/server/v8 38 github.com/mattermost/mattermost-server/v6 37 github.com/answerdev/answer 34 k8s.io/kubernetes 33 github.com/argoproj/argo-cd 31 github.com/rancher/rancher 31 github.com/hashicorp/vault 30 github.com/docker/docker 28 github.com/hashicorp/nomad 26 github.com/hashicorp/consul 26 github.com/argoproj/argo-cd/v2 25 gogs.io/gogs 24 github.com/cilium/cilium 21 github.com/ethereum/go-ethereum 20 code.gitea.io/gitea 19 golang.org/x/net 18 helm.sh/helm/v3 17 github.com/traefik/traefik/v2 17 github.com/goharbor/harbor 17 github.com/containerd/containerd 14 github.com/nats-io/nats-server/v2 14 github.com/mattermost/mattermost-server 13 github.com/go-gitea/gitea 12 github.com/zitadel/zitadel 12 github.com/opencontainers/runc 12 github.com/openfga/openfga 11 github.com/1Panel-dev/1Panel 11 github.com/cloudflare/cfrpki 11 github.com/greenpau/caddy-security 10 github.com/cri-o/cri-o 10 github.com/cosmos/cosmos-sdk 9 github.com/kubernetes/kubernetes 9 github.com/sylabs/singularity 9 golang.org/x/crypto 9 github.com/traefik/traefik 9 github.com/pomerium/pomerium 9 github.com/traefik/traefik/v3 9 istio.io/istio 8 go.etcd.io/etcd/v3 8 github.com/hashicorp/go-getter 8 github.com/pterodactyl/wings 8 github.com/kubeedge/kubeedge 8 github.com/stacklok/minder 8 github.com/containers/podman/v4 8 github.com/beego/beego 7 github.com/google/fscrypt 7 github.com/moby/moby 7 github.com/authzed/spicedb 7 k8s.io/ingress-nginx 7 helm.sh/helm 7 github.com/pion/dtls 6 github.com/hyperledger/fabric 6 github.com/cometbft/cometbft 6 github.com/beego/beego/v2 6 kubevirt.io/kubevirt 6 github.com/apache/trafficcontrol 6 github.com/treeverse/lakefs 6 github.com/gofiber/fiber/v2 6 github.com/cubefs/cubefs 6 github.com/gravitl/netmaker 6 github.com/sigstore/cosign 6 github.com/fluxcd/flux2 6 github.com/gin-gonic/gin 5 github.com/fluxcd/kustomize-controller 5 github.com/IBAX-io/go-ibax 5 github.com/kyverno/kyverno 5 github.com/0xJacky/Nginx-UI 5 github.com/gophish/gophish 5 github.com/apache/incubator-answer 5 github.com/russellhaering/goxmldsig 5 github.com/KubeOperator/kubepi 5 github.com/containers/buildah 5 github.com/pion/dtls/v2 5 github.com/foxcpp/maddy 5 github.com/moby/buildkit 5 github.com/tendermint/tendermint 5 github.com/hashicorp/go-getter/v2 5 github.com/ipfs/go-ipfs 5 github.com/russellhaering/gosaml2 5 github.com/schollz/croc/v9 5 go.etcd.io/etcd 5 github.com/kiali/kiali 5 github.com/mattermost/mattermost-server/v5 5 github.com/nats-io/jwt 5 github.com/evmos/evmos/v7 4 github.com/tidwall/gjson 4 github.com/coredns/coredns 4 github.com/evmos/evmos/v6 4 github.com/lestrrat-go/jwx 4 github.com/evmos/evmos/v13 4 github.com/evmos/evmos/v16 4 github.com/lestrrat-go/jwx/v2 4 github.com/dhowden/tag 4 golang.org/x/net/http2 4 github.com/free5gc/free5gc 4 github.com/minio/minio 4 github.com/ory/fosite 4 github.com/dexidp/dex 4 github.com/alist-org/alist/v3 4 github.com/git-lfs/git-lfs 4 github.com/open-policy-agent/opa 4 github.com/argoproj/argo-workflows/v3 4 github.com/containers/podman/v3 4 github.com/hashicorp/go-getter/gcs/v2 4 github.com/concourse/concourse 4 github.com/hashicorp/go-getter/s3/v2 4 github.com/aws/aws-sdk-go 4 github.com/oauth2-proxy/oauth2-proxy 4 github.com/evmos/evmos/v11 4 golang.org/x/image 4 github.com/lightningnetwork/lnd 4 github.com/projectcalico/calico 4 github.com/casdoor/casdoor 4 github.com/arduino/arduino-create-agent 4 github.com/crewjam/saml 4 github.com/IceWhaleTech/CasaOS-UserService 4 github.com/gogs/gogs 4 golang.org/x/text 3 github.com/evmos/evmos/v15 3 gopkg.in/yaml.v2 3 github.com/evmos/evmos/v14 3 github.com/crossplane/crossplane 3 github.com/gofiber/fiber 3 github.com/evmos/evmos/v12 3 github.com/nats-io/nats-server 3 github.com/openshift/origin 3 github.com/artifacthub/hub 3 github.com/libp2p/go-libp2p 3 github.com/evmos/evmos/v10 3 github.com/evmos/evmos/v9 3 github.com/ory/oathkeeper 3 github.com/cheqd/cheqd-node 3 github.com/evmos/evmos/v8 3 github.com/sigstore/cosign/v2 3 github.com/navidrome/navidrome 3 github.com/crypto-org-chain/cronos 3 github.com/nats-io/nats-streaming-server 3 github.com/heketi/heketi 3 github.com/fluxcd/helm-controller 3 go.etcd.io/etcd/client/v3 3 github.com/owncast/owncast 3 github.com/consensys/gnark 3 github.com/mholt/archiver 3 k8s.io/client-go 3 vitess.io/vitess 3 github.com/notaryproject/notation 3 github.com/flyteorg/flyteadmin 3 github.com/quic-go/quic-go 3 github.com/hashicorp/vault/vault 3 github.com/apache/servicecomb-service-center 3 github.com/ElrondNetwork/elrond-go 3 github.com/docker/distribution 3 github.com/miekg/dns 3 github.com/tiagorlampert/CHAOS 3 google.golang.org/grpc 3 github.com/tharsis/evmos 3 github.com/phachon/mm-wiki 3 github.com/cortexproject/cortex 3 github.com/go-vela/server 3 github.com/jackc/pgx/v5 3 github.com/jackc/pgx/v4 3 github.com/edgelesssys/constellation/v2 3 github.com/hashicorp/boundary 3 github.com/caddyserver/caddy 3 github.com/weaveworks/weave-gitops 3 github.com/square/go-jose 3 github.com/go-skynet/LocalAI 3 github.com/authelia/authelia/v4 3 github.com/dutchcoders/transfer.sh 3 github.com/syncthing/syncthing 3 github.com/evmos/evmos/v17 3 github.com/evmos/evmos/v18 3 github.com/flipped-aurora/gin-vue-admin/server 2 github.com/fluxcd/source-controller 2 github.com/microcosm-cc/bluemonday 2 github.com/pingcap/tidb 2 github.com/cosmos/ibc-go/v4 2 github.com/google/exposure-notifications-verification-server 2 github.com/minio/console 2 rancher/rancher 2 github.com/argoproj/argo-events 2 github.com/etcd-io/etcd 2 github.com/clastix/capsule-proxy 2 github.com/apptainer/apptainer 2 github.com/multiversx/mx-chain-go 2 github.com/jaegertracing/jaeger 2 github.com/astaxie/beego 2 github.com/bitly/oauth2_proxy 2 github.com/gphper/ginadmin 2 github.com/cloudflare/cloudflared 2 github.com/flynn/noise 2 github.com/siderolabs/talos 2 github.com/karmada-io/karmada 2 protobuf 2 github.com/protocolbuffers/protobuf 2 github.com/AdguardTeam/AdGuardHome 2 github.com/buildkite/elastic-ci-stack-for-aws/v6 2 google/protobuf 2
Filter by Repository
https://github.com/usememos/memos 59 https://github.com/kubernetes/kubernetes 49 https://github.com/argoproj/argo-cd 40 https://github.com/grafana/grafana 38 https://github.com/answerdev/answer 34 https://github.com/go-gitea/gitea 31 https://github.com/rancher/rancher 28 https://github.com/gogs/gogs 24 https://github.com/cilium/cilium 21 https://github.com/hashicorp/consul 19 https://github.com/helm/helm 18 https://github.com/goharbor/harbor 17 https://github.com/traefik/traefik 17 https://github.com/moby/moby 16 https://github.com/etcd-io/etcd 16 https://github.com/ethereum/go-ethereum 16 https://github.com/hashicorp/vault 16 https://github.com/containerd/containerd 14 https://github.com/mattermost/mattermost 14 https://github.com/hashicorp/nomad 13 https://github.com/golang/go 13 https://github.com/zitadel/zitadel 12 https://github.com/1Panel-dev/1Panel 11 https://github.com/cloudflare/cfrpki 11 https://github.com/nats-io/nats-server 11 https://github.com/containers/podman 11 https://github.com/opencontainers/runc 11 https://github.com/openfga/openfga 11 https://github.com/greenpau/caddy-security 10 https://github.com/cri-o/cri-o 10 https://github.com/pomerium/pomerium 9 https://github.com/cosmos/cosmos-sdk 9 https://github.com/stacklok/minder 8 https://github.com/hashicorp/go-getter 8 https://github.com/pterodactyl/wings 8 https://github.com/istio/istio 8 https://github.com/kubeedge/kubeedge 8 https://github.com/docker/docker 8 https://github.com/authzed/spicedb 7 https://github.com/google/fscrypt 7 https://github.com/beego/beego 7 https://github.com/hpcng/singularity 7 https://github.com/kubernetes/ingress-nginx 7 https://github.com/evmos/evmos 7 https://github.com/sigstore/cosign 6 https://github.com/schollz/croc 6 https://github.com/pion/dtls 6 https://github.com/cometbft/cometbft 6 https://github.com/containers/buildah 6 https://github.com/cubefs/cubefs 6 https://github.com/moby/buildkit 6 https://github.com/fluxcd/flux2 6 https://github.com/hyperledger/fabric 6 https://github.com/gofiber/fiber 6 https://github.com/gravitl/netmaker 6 https://github.com/treeverse/lakeFS 6 https://github.com/kyverno/kyverno 5 https://github.com/foxcpp/maddy 5 https://github.com/ipfs/go-ipfs 5 https://github.com/crewjam/saml 5 https://github.com/IBAX-io/go-ibax 5 https://github.com/free5gc/free5gc 5 https://github.com/gophish/gophish 5 https://github.com/argoproj/argo-workflows 5 https://github.com/0xJacky/nginx-ui 5 https://github.com/tendermint/tendermint 5 https://github.com/ory/fosite 4 https://github.com/aws/aws-sdk-go 4 https://github.com/grafana/bugbounty 4 https://github.com/minio/minio 4 https://github.com/IceWhaleTech/CasaOS-UserService 4 https://github.com/containous/traefik 4 https://github.com/arduino/arduino-create-agent 4 https://github.com/siderolabs/talos 4 https://github.com/oauth2-proxy/oauth2-proxy 4 https://github.com/tidwall/gjson 4 https://github.com/russellhaering/gosaml2 4 https://github.com/open-policy-agent/opa 4 https://github.com/concourse/concourse 4 https://github.com/lestrrat-go/jwx 4 https://github.com/gin-gonic/gin 4 https://github.com/kubevirt/kubevirt 4 https://github.com/git-lfs/git-lfs 4 https://github.com/casdoor/casdoor 4 https://github.com/dhowden/tag 4 https://github.com/dexidp/dex 4 https://github.com/cheqd/cheqd-node 3 https://github.com/tailscale/tailscale 3 https://github.com/quic-go/quic-go 3 https://github.com/authelia/authelia 3 https://github.com/caddyserver/caddy 3 https://github.com/KubeOperator/KubePi 3 https://github.com/edgelesssys/constellation 3 https://github.com/cortexproject/cortex 3 https://github.com/coredns/coredns 3 https://github.com/ipfs/boxo 3 https://github.com/lightningnetwork/lnd 3 https://github.com/dutchcoders/transfer.sh 3 https://github.com/drakkan/sftpgo 3 https://github.com/projectdiscovery/nuclei 3 https://github.com/libp2p/go-libp2p 3 https://github.com/weaveworks/weave-gitops 3 https://github.com/kiali/kiali 3 https://github.com/openshift/origin 3 https://github.com/gogits/gogs 3 https://github.com/nats-io/jwt 3 https://github.com/square/go-jose 3 https://github.com/ory/oathkeeper 3 https://github.com/u-root/u-root 3 https://github.com/navidrome/navidrome 3 https://github.com/alist-org/alist 3 https://github.com/sylabs/singularity 3 https://github.com/vitessio/vitess 3 https://github.com/moby/libnetwork 3 https://github.com/flyteorg/flyteadmin 3 https://github.com/syncthing/syncthing 3 https://github.com/go-vela/server 3 https://github.com/go-yaml/yaml 3 https://github.com/Consensys/gnark 3 https://github.com/apache/trafficcontrol 3 https://github.com/flipped-aurora/gin-vue-admin 3 https://github.com/kubernetes-sigs/secrets-store-csi-driver 3 https://github.com/phachon/mm-wiki 3 https://github.com/tiagorlampert/CHAOS 3 https://github.com/open-telemetry/opentelemetry-go-contrib 3 https://github.com/crossplane/crossplane 3 https://github.com/heketi/heketi 3 https://github.com/ElrondNetwork/elrond-go 3 https://github.com/artifacthub/hub 3 https://github.com/labstack/echo 2 https://github.com/labring/sealos 2 https://github.com/coreos/etcd 2 https://github.com/Masterminds/goutils 2 https://github.com/mattermost/mattermost-plugin-jira 2 https://github.com/containers/libpod 2 https://github.com/containers/image 2 https://github.com/mholt/archiver 2 https://github.com/microcosm-cc/bluemonday 2 https://github.com/miekg/dns 2 https://github.com/Consensys/gnark-crypto 2 https://github.com/minio/console 2 https://github.com/codenotary/immudb 2 https://github.com/mudler/localai 2 https://github.com/multiversx/mx-chain-go 2 https://github.com/elastic/beats 2 https://github.com/heroiclabs/nakama 2 https://github.com/envoyproxy/envoy 2 https://github.com/hashicorp/terraform 2 https://github.com/grpc/grpc-go 2 https://github.com/facebook/fbthrift 2 https://github.com/fkie-cad/yapscan 2 https://github.com/fleetdm/fleet 2 https://github.com/fluid-cloudnative/fluid 2 https://github.com/gphper/ginadmin 2 https://github.com/flynn/noise 2 https://github.com/gotify/server 2 https://github.com/goreleaser/goreleaser 2 https://github.com/ulikunitz/xz 2 https://github.com/unknwon/cae 2 https://github.com/google/exposure-notifications-verification-server 2 https://github.com/golang/crypto 2 https://github.com/go-jose/go-jose 2 https://github.com/gohugoio/hugo 2 https://github.com/go-git/go-git 2 https://github.com/mutagen-io/mutagen 2 https://github.com/woodpecker-ci/woodpecker 2 https://github.com/cosmos/ethermint 2 https://github.com/cosmos/ibc-go 2 https://github.com/temporalio/temporal 2 https://github.com/crypto-org-chain/cronos 2 https://github.com/dapr/dapr 2 https://github.com/kitabisa/teler-waf 2 https://github.com/kitabisa/teler 2 https://github.com/distribution/distribution 2 https://github.com/jackc/pgx 2 https://github.com/jackc/pgproto3 2 https://github.com/ipld/go-codec-dagpb 2 https://github.com/dvsekhvalnov/jose2go 2 https://github.com/ecnepsnai/web 2 https://github.com/influxdata/influxdb 2 https://github.com/imgproxy/imgproxy 2 https://github.com/IceWhaleTech/CasaOS 2 https://github.com/edgelesssys/marblerun 2 https://github.com/theupdateframework/go-tuf 2 https://github.com/ntbosscher/gobase 2 https://github.com/supranational/blst 2 https://github.com/pingcap/tidb 2 https://github.com/sajari/docconv 2 https://github.com/ollama/ollama 2 https://github.com/bottlerocket-os/bottlerocket 2 https://github.com/projectdiscovery/interactsh 2 https://github.com/bitly/oauth2_proxy 2 https://github.com/owncast/owncast 2 https://github.com/rancher/wrangler 2 https://github.com/opencontainers/distribution-spec 2 https://github.com/projectcapsule/capsule-proxy 2 https://github.com/peterzen/goresolver 2 https://github.com/zalando/skipper 2 https://github.com/projectcalico/calico 2