Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go Security Advisories

Loading...
Moderate
GSA_kwCzR0hTQS04cmM5LXZ4amgtcWpmMs4AAz9k
Vega's validators able to submit duplicate transactions
Ecosystems: go
Packages: code.vegaprotocol.io/vega
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: 11 months ago
Moderate
GSA_kwCzR0hTQS1jaDY4LTdjZjQtMzV2cs0oag
Limited ability to spoof SAML authentication with missing audience verification in Fleet
Ecosystems: go
Packages: github.com/fleetdm/fleet/v4
Source: GitHub Advisory Database
Blast Radius: 4.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02ZjRtLWo1NnctNTVjM84AA2A3
Kiali content spoofing vulnerability
Ecosystems: go
Packages: github.com/kiali/kiali
Source: GitHub Advisory Database
Blast Radius: 4.1
Published: 7 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmaDItN2pnNS02NTNw
Denial of Service in docker2aci
Ecosystems: go
Packages: github.com/appc/docker2aci
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05bTN2LXY0cjUtcHB4N84AAzr2
Notation vulnerable to denial of service from high number of artifact signatures
Ecosystems: go
Packages: github.com/notaryproject/notation
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: 11 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl3dmgtZmY1Zi14anBq
Missing Authorization in Harbor
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: about 2 years ago
High
GSA_kwCzR0hTQS1nd2o1LXdwNnItNXE5Zs4AAt8B
Cronos vulnerable to DoS through unintended Contract Selfdestruct
Ecosystems: go
Packages: github.com/crypto-org-chain/cronos
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1wbWpnLTUyaDktNzJxds4AAtUK
Argo CD SSO users vulnerable to Cross-site Scripting
Ecosystems: go
Packages: github.com/argoproj/argo-cd
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12aDczLXEzcnctcXg3d84AA5En
Boundary vulnerable to session hijacking through TLS certificate tampering
Ecosystems: go
Packages: github.com/hashicorp/boundary
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS04YzZwLXY4MzctNzdmNs4AAu1z
Harbor fails to validate the user permissions when updating tag immutability policies
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14eDl3LTQ2NGYtN2g2Zs4AAu10
Harbor fails to validate the user permissions when updating a robot account
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1mN3F3LWpqOWMtcnBxOc4AAzkQ
In Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing file
Ecosystems: go
Packages: github.com/lima-vm/lima
Source: GitHub Advisory Database
Blast Radius: 3.8
Published: 11 months ago
High
GSA_kwCzR0hTQS1wcGpoLXhwNXYtNDZ3Y84AA19W
Croc sender may send dangerous new files to receiver
Ecosystems: go
Packages: github.com/schollz/croc/v9
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 8 months ago
High
GSA_kwCzR0hTQS0zNjRjLXZ2cXgtNDQ2Y84AA19Z
Croc sender may place ANSI or CSI escape sequences in filename to attach receiver's terminal device
Ecosystems: go
Packages: github.com/schollz/croc/v9
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 8 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnd3AtNHZwNC1xbW0y
Local Privilege Escalation in cloudflared
Ecosystems: go
Packages: github.com/cloudflare/cloudflared
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: almost 3 years ago
Moderate
GSA_kwCzR0hTQS1qNndwLTM4NTktdnhmZ80W9g
OIDC claims not updated from Identity Provider in Pomerium
Ecosystems: go
Packages: github.com/pomerium/pomerium
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1tbXg1LTMybTQtd3h2eM4AA04G
Ineffective privileges drop when requesting container network
Ecosystems: go
Packages: github.com/apptainer/apptainer
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS12bXA1LWM1aHAtNmM2Nc1RJQ
Woodpecker allows cross-site scripting (XSS) via build logs
Ecosystems: go
Packages: github.com/woodpecker-ci/woodpecker
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1ncXg5LWgzdzItZnByZ84AAzoj
Gitpod vulnerable to Cross-site Scripting
Ecosystems: go
Packages: github.com/gitpod-io/gitpod
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 11 months ago
High
GSA_kwCzR0hTQS05eGM5LXhxN3ctdnBjcs4AA49b
Apache ServiceComb Service-Center Server-Side Request Forgery vulnerability
Ecosystems: go
Packages: github.com/apache/servicecomb-service-center
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: 3 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg2anYtNXZmZy1nbTd4
Path traversal in ServiceCenter
Ecosystems: go
Packages: github.com/apache/servicecomb-service-center
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: over 2 years ago
High
GSA_kwCzR0hTQS03bWp2LXgzamYtNTQ1eM4AAyNr
cloudflared's Installer has Local Privilege Escalation Vulnerability
Ecosystems: go
Packages: github.com/cloudflare/cloudflared
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: about 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjM3gtZ3g2Yy1nOTlm
Denial of Service in Bytom
Ecosystems: go
Packages: github.com/bytom/bytom
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tcTZmLTV4aDUtaGdjZs4AA2X3
Harbor timing attack risk
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.6
Published: 7 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2MmgtZ2Y4bS1yNjhq
Exposure of server configuration in github.com/go-vela/server
Ecosystems: go
Packages: github.com/go-vela/compiler
Source: GitHub Advisory Database
Blast Radius: 3.5
Published: about 2 years ago
High
GSA_kwCzR0hTQS05dnJtLXY5eHYteDN4cs4AA0Sj
HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured
Ecosystems: go
Packages: github.com/hashicorp/boundary
Source: GitHub Advisory Database
Blast Radius: 3.4
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS13bWZjLWc4NnAtZmp2cs4AAzhX
go package pydio cells vulnerable to cross-site scripting
Ecosystems: go
Packages: github.com/pydio/cells
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: 11 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE5eDQtcTc2Zi01aDVq
Unauthenticated users can exploit an enumeration vulnerability in Harbor (CVE-2019-19030)
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: about 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4cjUtMzRtci1tdm03
"catalog's registry v2 api exposed on unauthenticated path in Harbor"
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1qNXZtLTdxY2MtMnd3Z84AA63w
Kopia: Storage connection credentials written to console on "repository status" CLI command with JSON output
Ecosystems: go
Packages: github.com/kopia/kopia
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: 24 days ago
Moderate
GSA_kwCzR0hTQS1jN3ZmLW0zOTQtbTR4NM4AA5Wn
Use of Insufficiently Random Values in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: 3 months ago
Critical
GSA_kwCzR0hTQS00OTRoLTk5MjQteHd3Oc4AA6B3
Pterodactyl Wings vulnerable to improper isolation of server file access
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS1xNzZxLXE4aHctaG1wd84AAusG
Harbor fails to validate the user permissions when reading job execution logs through the P2P preheat execution logs
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS03Nmo0LWdnZ3EtN3JnOc02HQ
SQLinjection in falcon-plus
Ecosystems: go
Packages: github.com/open-falcon/falcon-plus
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1qcGdnLWNwMngtcXJ3M84AAwoP
ecnepsnai/web vulnerable to Uncontrolled Resource Consumption
Ecosystems: go
Packages: github.com/ecnepsnai/web
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0eDUtanFxNC1xYzh4
SQL Injection in Cloud Native Computing Foundation Harbor
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW04OTgtaDRwbS1wcWZy
Arbitrary code execution due to an uncontrolled search path for the git binary
Ecosystems: go
Packages: github.com/MichaelMure/git-bug
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Moderate
GSA_kwCzR0hTQS0ydjM1LXdqNHItcmNtds4AAnU5
Kubernetes Secrets Store CSI Driver plugins arbitrary file write
Ecosystems: go
Packages: github.com/GoogleCloudPlatform/secrets-store-csi-driver-provider-gcp, github.com/Azure/secrets-store-csi-driver-provider-azure, github.com/hashicorp/vault-csi-provider
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmOHItNHF3bS1yN2pm
Improper Authentication in Apache Traffic Control
Ecosystems: go
Packages: github.com/apache/trafficcontrol
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 3 years ago
Critical
GSA_kwCzR0hTQS1tZzJjLXJjMzYtcDU5NM4AAqpw
Apache Traffic Control Traffic Ops Vulnerable to LDAP Injection
Ecosystems: go
Packages: github.com/apache/trafficcontrol
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS14cXYyLTN2dnEtcWc2cs4AAvkJ
Hashicorp Boundary vulnerable to clickjacking
Ecosystems: go
Packages: github.com/hashicorp/boundary
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1mZjcyLWZmNDItYzNnd84AA5Wm
Cross-site Scripting in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: 3 months ago
Critical
GSA_kwCzR0hTQS02NnA4LWo0NTktcnE2M84AAxiH
Pterodactyl Wings contains UNIX Symbolic Link (Symlink) Following resulting in deletion of files and directories on the host system
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS01N3d4LW02MzYtZzNnOM4AA4lw
Go package github.com/notaryproject/notation configured with permissive trust policies potentially susceptible to rollback attack from compromised registry
Ecosystems: go
Packages: github.com/notaryproject/notation
Source: GitHub Advisory Database
Blast Radius: 2.8
Published: 4 months ago
Moderate
GSA_kwCzR0hTQS1yOHhwLTUybXEtcm1tOM4AA49h
Apache ServiceComb Service-Center Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: go
Packages: github.com/apache/servicecomb-service-center
Source: GitHub Advisory Database
Blast Radius: 2.8
Published: 3 months ago
Critical
GSA_kwCzR0hTQS1wNzQ0LTRxNnAtaHZjMs4AAzSb
Wings vulnerable to escape to host from installation container
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: 12 months ago
Critical
GSA_kwCzR0hTQS14Z2djLXFwcmcteDZtd84AAs7K
Weave GitOps leaked cluster credentials into logs on connection errors
Ecosystems: go
Packages: github.com/weaveworks/weave-gitops
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS00Zzc2LXczeHctMng2d84AAyGN
Full authentication bypass if SASL authorization username is specified
Ecosystems: go
Packages: github.com/foxcpp/maddy
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: about 1 year ago
Low
GSA_kwCzR0hTQS1qODVxLTQ2aGctMzZwMs4AA658
SpiceDB: LookupSubjects may return partial results if a specific kind of relation is used
Ecosystems: go
Packages: github.com/authzed/spicedb
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: 24 days ago
High
GSA_kwCzR0hTQS13cjNjLWczMjYtNDg2Y84AAw0t
GitOps Run allows for Kubernetes workload injection
Ecosystems: go
Packages: github.com/weaveworks/weave-gitops
Source: GitHub Advisory Database
Blast Radius: 2.7
Published: over 1 year ago
High
GSA_kwCzR0hTQS14NDVjLWN2cDgtcTRmbc4AAwJ5
Capsule vulnerable to privilege escalation by ServiceAccount deployed in a Tenant Namespace
Ecosystems: go
Packages: github.com/clastix/capsule
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJybTgtMzJnNC13OG0z
Cross-site Request Forgery (CSRF)
Ecosystems: go
Packages: github.com/bitly/oauth2_proxy
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE5cDgtMzN3Yy1oNDMy
Authenticated users can exploit an enumeration vulnerability in Harbor
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: almost 3 years ago
Moderate
GSA_kwCzR0hTQS1tdjd4LTI3cGMtOGM5Ns4AAzhW
Go package pydio/cells vulnerable to authorization bypass
Ecosystems: go
Packages: github.com/pydio/cells
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: 11 months ago
Moderate
GSA_kwCzR0hTQS12ajM2LTNjY3ItNjU2M84AA5Wr
Authentication Bypass by Spoofing in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS04aHAzLXJtcjcteGg4OM4AA5Wv
Open Redirect in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: 3 months ago
High
GSA_kwCzR0hTQS1ncW1mLWpxZ3Ytdjhmd84AA7v4
Pterodactyl Wings vulnerable to Arbitrary File Write/Read
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: 1 day ago
Moderate
GSA_kwCzR0hTQS05M3g4LTY2ajItd3dyNc4AA5Wo
Server-Side Request Forgery in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS1ocDU2LXh2ZjQtZzZ3cs4AA19U
Cros secrets may be disclosed to untrusted relay
Ecosystems: go
Packages: github.com/schollz/croc/v9
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: 8 months ago
Moderate
GSA_kwCzR0hTQS03bXA2LTkyOXAtcHFoas4AA19V
Croc requires senders to provide local IP addresses in cleartext
Ecosystems: go
Packages: github.com/schollz/croc/v9
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: 8 months ago
Moderate
GSA_kwCzR0hTQS04aDk1LWpjcDUtcGpwcs4AA5Wt
Improper Validation of Array Index in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: 3 months ago
High
GSA_kwCzR0hTQS1wOHIzLTgzcjgtandqNc4AAxfU
Pterodactyl Wings contains UNIX Symbolic Link (Symlink) Following
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 2.5
Published: about 1 year ago
Low
GSA_kwCzR0hTQS1yODQ3LTZ3NmgtcjhnNM4AA2vp
Flyte Admin SQL Injection in List Filters
Ecosystems: go
Packages: github.com/flyteorg/flyteadmin
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: 6 months ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMzcDYtZng0Mi03cmY1
Harbor is vulnerable to a limited Server-Side Request Forgery (SSRF) (CVE-2020-13788)
Ecosystems: go
Packages: github.com/goharbor/harbor
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1qbXAyLXdjNHAtd2ZoMs4AAzGL
Mutagen list and monitor operations do not neutralize control characters in text controlled by remote endpoints
Ecosystems: go
Packages: github.com/mutagen-io/mutagen, github.com/mutagen-io/mutagen-compose
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 1 year ago
Moderate
GSA_kwCzR0hTQS12ZnBoLWhqZnYtY3B2Ms4AA5Wx
Improper Restriction of Excessive Authentication Attempts in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS12cDY2LWdmN3ctOW00eM4AA5Wu
Insufficient Session Expiration in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: 3 months ago
High
GSA_kwCzR0hTQS02YzZwLWg3OWYtZzZwNM4AAvxx
Istio may allow identity impersonation if user has localhost access
Ecosystems: go
Packages: github.com/istio/istio
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 1 year ago
High
GSA_kwCzR0hTQS1mMndyLWM0YzQteGpnN83wPg
Apache Traffic Control vulnerable to Slowloris-style Denial of Service attack
Ecosystems: go
Packages: github.com/apache/trafficcontrol
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS0yY2pjLXJnbXAteDY0Oc3uew
Traefik Missing Authentication
Ecosystems: go
Packages: github.com/traefik/traefik
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1qeHF2LWpjdmgtN2dyNM4AAtvs
Atlantis Events vulnerable to Timing Attack
Ecosystems: go
Packages: github.com/runatlantis/atlantis
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12ZnhjLXIyZ3gtdjJ2cc4AAg3I
Hybrid Group Gobot Improper Certificate Validation vulnerability
Ecosystems: go
Packages: github.com/hybridgroup/gobot
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2cDQtcnBtci14d3Jy
Possible bypass of token claim validation when OAuth2 Introspection caching is enabled
Ecosystems: go
Packages: github.com/ory/oathkeeper
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 3 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmdmYtNmd4NS1tcXY2
Incorrect Authorization in ORY Oathkeeper
Ecosystems: go
Packages: github.com/ory/oathkeeper
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 3 years ago
High
GSA_kwCzR0hTQS1yM2ZxLWNtbXctY3Btbc4AAg2e
Containous Traefik Exposes Password Hashes
Ecosystems: go
Packages: github.com/traefik/traefik
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14djU5LWdjM3ItcmY5Ms4AAtHT
Insufficient Session Expiration in Nakama
Ecosystems: go
Packages: github.com/heroiclabs/nakama
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS13cDQ3LTlyM2gteGZncc0pdg
Server-Side Request Forgery in Apache Traffic Control
Ecosystems: go
Packages: github.com/apache/trafficcontrol
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: about 2 years ago
High
GSA_kwCzR0hTQS13cjhoLXc5NjktMzZtOM4AAxwt
GoPistolet vulnerable to Improper Resource Shutdown or Release
Ecosystems: go
Packages: github.com/gopistolet/gopistolet
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: about 1 year ago
High
GSA_kwCzR0hTQS1tNm01LXBwNGctZmNjOM0WNA
S3 storage write is not aborted on errors leading to unbounded memory usage
Ecosystems: go
Packages: github.com/foxcpp/maddy
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 2 years ago
High
GSA_kwCzR0hTQS12OW1wLWo4ZzctMnE2bc4AAxPu
Paranoidhttp Server-Side Request Forgery vulnerability
Ecosystems: go
Packages: github.com/hakobe/paranoidhttp
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS03ZzN2LTRnZ3IteHZqZs4AA19a
Croc may expose secret to local users
Ecosystems: go
Packages: github.com/schollz/croc/v9
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: 8 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1qOXItd3dtOC03cTUy
Open Redirect in github.com/AndrewBurian/powermux
Ecosystems: go
Packages: github.com/AndrewBurian/powermux
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: almost 3 years ago
High
GSA_kwCzR0hTQS04OXFtLXdjbXctM21nZ84AAw0u
Gitops Run insecure communication
Ecosystems: go
Packages: github.com/weaveworks/weave-gitops
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS1wZnc0LXhqZ20tMjY3Y84AAuzz
Dendrite signature checks not applied to some retrieved missing events
Ecosystems: go
Packages: github.com/matrix-org/dendrite
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14djZ4LTQ1NnYtMjR4aM4AAwqM
gotify/server vulnerable to Cross-site Scripting in the application image file upload
Ecosystems: go
Packages: github.com/gotify/server
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS1yaDVmLTJ3NnItcTd2as4AAhfW
Podman Path Traversal Vulnerability leads to arbitrary file read/write
Ecosystems: go
Packages: github.com/containers/podman
Source: GitHub Advisory Database
Blast Radius: 2.2
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yOTY5LTc4M2YtNmpxcs4AA5Wp
Improper Neutralization of HTTP Headers in github.com/greenpau/caddy-security
Ecosystems: go
Packages: github.com/greenpau/caddy-security
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS03amY1LWZ2Z2YtNDhjNs4AAxEf
Velociraptor subject to Path Traversal
Ecosystems: go
Packages: www.velocidex.com/golang/velociraptor
Source: GitHub Advisory Database
Blast Radius: 2.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14dnJjLTJ3dmgtNDl2Y84AA3Ht
Gitsign's Rekor public keys fetched from upstream API instead of local TUF client.
Ecosystems: go
Packages: github.com/sigstore/gitsign
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: 6 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqNm0tcjhqYy0yZ3A3
Asymmetric Resource Consumption (Amplification) in Docker containers created by Wings
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZyZzMtOGg4eC01eGZ2
Unchecked hostname resolution could allow access to local network resources by users outside the local network
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 1.9
Published: almost 3 years ago
Moderate
GSA_kwCzR0hTQS1xcTIyLWpqOHgtNHd3ds4AA7v6
Pterodactyl Wings vulnerable to Server-Side Request Forgery during remote file pull
Ecosystems: go
Packages: github.com/pterodactyl/wings
Source: GitHub Advisory Database
Blast Radius: 1.9
Published: 1 day ago
Moderate
GSA_kwCzR0hTQS13eDhxLTRnbTktcmoyZ84AA6B0
Fluid vulnerable to OS Command Injection for Fluid Users with JuicefsRuntime
Ecosystems: go
Packages: github.com/fluid-cloudnative/fluid
Source: GitHub Advisory Database
Blast Radius: 1.9
Published: about 2 months ago
Moderate
GSA_kwCzR0hTQS05M3h4LWN2bWMtOXczds4AAzM4
On a compromised node, the fluid-csi service account can be used to modify node specs
Ecosystems: go
Packages: github.com/fluid-cloudnative/fluid
Source: GitHub Advisory Database
Blast Radius: 1.9
Published: 12 months ago
Moderate
GSA_kwCzR0hTQS02Y3A3LWc5NzItdzltOc0wjA
Use of a Key Past its Expiration Date and Insufficient Session Expiration in Maddy Mail Server
Ecosystems: go
Packages: github.com/foxcpp/maddy
Source: GitHub Advisory Database
Blast Radius: 1.9
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05Zjk1LWhoZzQtcGc0Zs4AAx5S
teler-waf subject to Bypass of Common Web Attack Threat Rule with HTML Entities Payload
Ecosystems: go
Packages: github.com/kitabisa/teler-waf
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: about 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ3d3ItNDI2ai1mcjgy
Symbolic links in an unpacking routine may enable attackers to read and/or write to arbitrary locations in dbdeployer
Ecosystems: go
Packages: github.com/datacharmer/dbdeployer
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wMnBmLWc4Y3EtM2dxNc4AAx5T
teler-waf contains detection rule bypass via Entities payload
Ecosystems: go
Packages: github.com/kitabisa/teler-waf
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: about 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptMzQteG04bS13OTU4
Open Redirect in oauth2_proxy
Ecosystems: go
Packages: github.com/bitly/oauth2_proxy
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS1nY2o3LWo0MzgtaGpqMs05RQ
Smokescreen SSRF via deny list bypass
Ecosystems: go
Packages: github.com/stripe/smokescreen
Source: GitHub Advisory Database
Blast Radius: 1.7
Published: about 2 years ago
Statistics
Advisories: 18,369
Packages: 8,294
Repositories: 537
Ecosystems: 12
Filter by Severity
Moderate 7,928 High 6,358 Critical 2,809 Low 985
Filter by Ecosystem
maven 5,531 packagist 3,809 pypi 3,712 npm 3,543 go 1,895 nuget 1,390 rubygems 814 cargo 777 swift 31 hex 30 actions 16 pub 8
Filter by Package
github.com/usememos/memos 59 github.com/mattermost/mattermost/server/v8 38 github.com/mattermost/mattermost-server/v6 37 github.com/answerdev/answer 34 k8s.io/kubernetes 32 github.com/argoproj/argo-cd 29 github.com/hashicorp/vault 28 github.com/grafana/grafana 28 github.com/rancher/rancher 28 github.com/hashicorp/nomad 26 github.com/hashicorp/consul 26 gogs.io/gogs 24 github.com/argoproj/argo-cd/v2 23 github.com/cilium/cilium 20 code.gitea.io/gitea 19 github.com/ethereum/go-ethereum 19 github.com/docker/docker 19 helm.sh/helm/v3 18 golang.org/x/net 17 github.com/goharbor/harbor 15 github.com/traefik/traefik/v2 13 github.com/mattermost/mattermost-server 13 github.com/containerd/containerd 13 github.com/nats-io/nats-server/v2 13 github.com/opencontainers/runc 12 github.com/go-gitea/gitea 12 github.com/moby/moby 12 github.com/openfga/openfga 11 github.com/cloudflare/cfrpki 11 github.com/zitadel/zitadel 11 github.com/greenpau/caddy-security 10 github.com/cosmos/cosmos-sdk 10 github.com/1Panel-dev/1Panel 10 golang.org/x/crypto 9 github.com/cri-o/cri-o 9 github.com/kubernetes/kubernetes 9 github.com/sylabs/singularity 9 github.com/containers/podman/v4 8 istio.io/istio 8 go.etcd.io/etcd 8 github.com/pomerium/pomerium 8 github.com/pterodactyl/wings 8 github.com/kubeedge/kubeedge 8 k8s.io/ingress-nginx 7 github.com/traefik/traefik 7 github.com/google/fscrypt 7 github.com/nats-io/jwt 7 helm.sh/helm 7 github.com/hashicorp/go-getter 7 github.com/beego/beego 7 github.com/russellhaering/goxmldsig 6 github.com/fluxcd/flux2 6 github.com/authzed/spicedb 6 github.com/treeverse/lakefs 6 github.com/cubefs/cubefs 6 github.com/apache/trafficcontrol 6 github.com/russellhaering/gosaml2 6 github.com/sigstore/cosign 6 github.com/gravitl/netmaker 6 kubevirt.io/kubevirt 6 github.com/beego/beego/v2 6 github.com/hyperledger/fabric 6 github.com/pion/dtls 6 github.com/apache/incubator-answer 5 github.com/hashicorp/go-getter/v2 5 github.com/mattermost/mattermost-server/v5 5 github.com/KubeOperator/kubepi 5 github.com/schollz/croc/v9 5 github.com/pion/dtls/v2 5 github.com/foxcpp/maddy 5 github.com/tendermint/tendermint 5 github.com/kiali/kiali 5 github.com/ipfs/go-ipfs 5 github.com/cometbft/cometbft 5 go.etcd.io/etcd/v3 5 github.com/kyverno/kyverno 5 github.com/IBAX-io/go-ibax 5 github.com/traefik/traefik/v3 5 github.com/moby/buildkit 5 github.com/0xJacky/Nginx-UI 5 github.com/containers/buildah 5 github.com/gofiber/fiber/v2 5 github.com/fluxcd/kustomize-controller 5 github.com/gophish/gophish 5 github.com/caddyserver/caddy 4 github.com/free5gc/free5gc 4 golang.org/x/net/http2 4 github.com/dhowden/tag 4 github.com/crewjam/saml 4 github.com/ory/fosite 4 github.com/aws/aws-sdk-go 4 github.com/git-lfs/git-lfs 4 github.com/oauth2-proxy/oauth2-proxy 4 github.com/argoproj/argo-workflows/v3 4 github.com/dexidp/dex 4 github.com/gin-gonic/gin 4 github.com/open-policy-agent/opa 4 github.com/alist-org/alist/v3 4 github.com/containers/podman/v3 4 github.com/concourse/concourse 4 github.com/casdoor/casdoor 4 github.com/tidwall/gjson 4 github.com/lestrrat-go/jwx 4 github.com/lestrrat-go/jwx/v2 4 github.com/hashicorp/go-getter/gcs/v2 4 github.com/hashicorp/go-getter/s3/v2 4 github.com/arduino/arduino-create-agent 4 github.com/IceWhaleTech/CasaOS-UserService 4 github.com/syncthing/syncthing 3 github.com/ElrondNetwork/elrond-go 3 github.com/lightningnetwork/lnd 3 github.com/ory/oathkeeper 3 github.com/openshift/origin 3 github.com/crossplane/crossplane 3 github.com/docker/distribution 3 github.com/apache/servicecomb-service-center 3 github.com/flyteorg/flyteadmin 3 github.com/hashicorp/vault/vault 3 k8s.io/client-go 3 github.com/quic-go/quic-go 3 github.com/notaryproject/notation 3 github.com/projectcalico/calico 3 github.com/consensys/gnark 3 gopkg.in/yaml.v2 3 github.com/heketi/heketi 3 github.com/miekg/dns 3 github.com/mholt/archiver 3 github.com/owncast/owncast 3 github.com/stacklok/minder 3 github.com/crypto-org-chain/cronos 3 github.com/navidrome/navidrome 3 github.com/nats-io/jwt/v2 3 github.com/sigstore/cosign/v2 3 github.com/coredns/coredns 3 github.com/cheqd/cheqd-node 3 github.com/libp2p/go-libp2p 3 github.com/minio/minio 3 go.etcd.io/etcd/client/v3 3 github.com/fluxcd/helm-controller 3 golang.org/x/text 3 github.com/square/go-jose 3 github.com/phachon/mm-wiki 3 github.com/jackc/pgx/v4 3 github.com/artifacthub/hub 3 github.com/tharsis/evmos 3 github.com/hashicorp/boundary 3 golang.org/x/image 3 github.com/edgelesssys/constellation/v2 3 github.com/authelia/authelia/v4 3 github.com/cortexproject/cortex 3 github.com/dutchcoders/transfer.sh 3 github.com/weaveworks/weave-gitops 3 github.com/go-vela/server 3 github.com/gphper/ginadmin 2 github.com/woodpecker-ci/woodpecker 2 github.com/sigstore/rekor 2 google.golang.org/protobuf 2 github.com/hashicorp/terraform 2 Google.Protobuf 2 github.com/projectcapsule/capsule-proxy 2 github.com/astaxie/beego 2 google/protobuf 2 google.golang.org/grpc 2 github.com/clastix/capsule-proxy 2 github.com/etcd-io/etcd 2 github.com/protocolbuffers/protobuf 2 github.com/openshift/apiserver-library-go 2 protobuf 2 vitess.io/vitess 2 github.com/mutagen-io/mutagen 2 github.com/edgexfoundry/app-functions-sdk-go/v2 2 github.com/siderolabs/talos 2 github.com/go-git/go-git/v5 2 gopkg.in/src-d/go-git.v4 2 github.com/unknwon/cae 2 github.com/nats-io/nats-streaming-server 2 github.com/flynn/noise 2 github.com/jaegertracing/jaeger 2 github.com/bitly/oauth2_proxy 2 mellium.im/xmpp 2 github.com/influxdata/influxdb 2 github.com/multiversx/mx-chain-go 2 github.com/dvsekhvalnov/jose2go 2 github.com/minio/console 2 github.com/google/exposure-notifications-verification-server 2 github.com/prometheus/prometheus 2 github.com/karmada-io/karmada 2 github.com/talos-systems/talos 2 github.com/pingcap/tidb 2 github.com/microcosm-cc/bluemonday 2 github.com/sap/cloud-security-client-go 2 github.com/labring/sealos 2 github.com/gohugoio/hugo 2 github.com/apptainer/apptainer 2 github.com/apache/thrift 2 github.com/flipped-aurora/gin-vue-admin/server 2 github.com/codenotary/immudb 2 github.com/kata-containers/runtime 2 github.com/kitabisa/teler-waf 2 github.com/IceWhaleTech/CasaOS 2
Filter by Repository
https://github.com/usememos/memos 59 https://github.com/kubernetes/kubernetes 48 https://github.com/argoproj/argo-cd 37 https://github.com/answerdev/answer 34 https://github.com/go-gitea/gitea 31 https://github.com/rancher/rancher 25 https://github.com/grafana/grafana 21 https://github.com/cilium/cilium 20 https://github.com/gogs/gogs 20 https://github.com/hashicorp/consul 19 https://github.com/helm/helm 19 https://github.com/hashicorp/vault 16 https://github.com/etcd-io/etcd 16 https://github.com/goharbor/harbor 15 https://github.com/ethereum/go-ethereum 15 https://github.com/mattermost/mattermost 14 https://github.com/moby/moby 14 https://github.com/traefik/traefik 13 https://github.com/hashicorp/nomad 13 https://github.com/containerd/containerd 13 https://github.com/golang/go 13 https://github.com/opencontainers/runc 11 https://github.com/openfga/openfga 11 https://github.com/zitadel/zitadel 11 https://github.com/containers/podman 11 https://github.com/cloudflare/cfrpki 11 https://github.com/nats-io/nats-server 10 https://github.com/cosmos/cosmos-sdk 10 https://github.com/1Panel-dev/1Panel 10 https://github.com/greenpau/caddy-security 10 https://github.com/cri-o/cri-o 9 https://github.com/istio/istio 8 https://github.com/kubeedge/kubeedge 8 https://github.com/pterodactyl/wings 8 https://github.com/pomerium/pomerium 8 https://github.com/docker/docker 8 https://github.com/kubernetes/ingress-nginx 7 https://github.com/beego/beego 7 https://github.com/hashicorp/go-getter 7 https://github.com/google/fscrypt 7 https://github.com/hpcng/singularity 7 https://github.com/schollz/croc 6 https://github.com/sigstore/cosign 6 https://github.com/pion/dtls 6 https://github.com/moby/buildkit 6 https://github.com/hyperledger/fabric 6 https://github.com/treeverse/lakeFS 6 https://github.com/gravitl/netmaker 6 https://github.com/authzed/spicedb 6 https://github.com/containers/buildah 6 https://github.com/fluxcd/flux2 6 https://github.com/cubefs/cubefs 6 https://github.com/0xJacky/nginx-ui 5 https://github.com/argoproj/argo-workflows 5 https://github.com/russellhaering/gosaml2 5 https://github.com/cometbft/cometbft 5 https://github.com/crewjam/saml 5 https://github.com/foxcpp/maddy 5 https://github.com/free5gc/free5gc 5 https://github.com/gofiber/fiber 5 https://github.com/gophish/gophish 5 https://github.com/kyverno/kyverno 5 https://github.com/IBAX-io/go-ibax 5 https://github.com/ipfs/go-ipfs 5 https://github.com/tendermint/tendermint 5 https://github.com/tidwall/gjson 4 https://github.com/casdoor/casdoor 4 https://github.com/IceWhaleTech/CasaOS-UserService 4 https://github.com/caddyserver/caddy 4 https://github.com/oauth2-proxy/oauth2-proxy 4 https://github.com/grafana/bugbounty 4 https://github.com/open-policy-agent/opa 4 https://github.com/git-lfs/git-lfs 4 https://github.com/siderolabs/talos 4 https://github.com/aws/aws-sdk-go 4 https://github.com/gin-gonic/gin 4 https://github.com/concourse/concourse 4 https://github.com/dexidp/dex 4 https://github.com/nats-io/jwt 4 https://github.com/kubevirt/kubevirt 4 https://github.com/arduino/arduino-create-agent 4 https://github.com/dhowden/tag 4 https://github.com/lestrrat-go/jwx 4 https://github.com/ory/fosite 4 https://github.com/containous/traefik 4 https://github.com/ory/oathkeeper 3 https://github.com/open-telemetry/opentelemetry-go-contrib 3 https://github.com/u-root/u-root 3 https://github.com/gogits/gogs 3 https://github.com/phachon/mm-wiki 3 https://github.com/flyteorg/flyteadmin 3 https://github.com/flipped-aurora/gin-vue-admin 3 https://github.com/evmos/evmos 3 https://github.com/ElrondNetwork/elrond-go 3 https://github.com/edgelesssys/constellation 3 https://github.com/openshift/origin 3 https://github.com/go-vela/server 3 https://github.com/go-yaml/yaml 3 https://github.com/heketi/heketi 3 https://github.com/ipfs/boxo 3 https://github.com/kiali/kiali 3 https://github.com/KubeOperator/KubePi 3 https://github.com/navidrome/navidrome 3 https://github.com/tailscale/tailscale 3 https://github.com/kubernetes-sigs/secrets-store-csi-driver 3 https://github.com/syncthing/syncthing 3 https://github.com/libp2p/go-libp2p 3 https://github.com/sylabs/singularity 3 https://github.com/moby/libnetwork 3 https://github.com/minio/minio 3 https://github.com/stacklok/minder 3 https://github.com/cheqd/cheqd-node 3 https://github.com/Consensys/gnark 3 https://github.com/authelia/authelia 3 https://github.com/artifacthub/hub 3 https://github.com/cortexproject/cortex 3 https://github.com/weaveworks/weave-gitops 3 https://github.com/crossplane/crossplane 3 https://github.com/quic-go/quic-go 3 https://github.com/apache/trafficcontrol 3 https://github.com/alist-org/alist 3 https://github.com/square/go-jose 3 https://github.com/dutchcoders/transfer.sh 3 https://github.com/IceWhaleTech/CasaOS 2 https://github.com/minio/console 2 https://github.com/imgproxy/imgproxy 2 https://github.com/bytebase/bytebase 2 https://github.com/influxdata/influxdb 2 https://github.com/buger/jsonparser 2 https://github.com/brokercap/Bifrost 2 https://github.com/miekg/dns 2 https://github.com/ipld/go-codec-dagpb 2 https://github.com/jackc/pgproto3 2 https://github.com/bottlerocket-os/bottlerocket 2 https://github.com/kitabisa/teler 2 https://github.com/kitabisa/teler-waf 2 https://github.com/temporalio/temporal 2 https://github.com/bitly/oauth2_proxy 2 https://github.com/zinclabs/zinc 2 https://github.com/atredispartners/advisories 2 https://github.com/argoproj/argo-events 2 https://github.com/zalando/skipper 2 https://github.com/microcosm-cc/bluemonday 2 https://github.com/apptainer/apptainer 2 https://github.com/mholt/archiver 2 https://github.com/labring/sealos 2 https://github.com/mellium/xmpp 2 https://github.com/mattermost/mattermost-plugin-jira 2 https://github.com/labstack/echo 2 https://github.com/1Panel-dev/KubePi 2 https://github.com/Masterminds/goutils 2 https://github.com/lightningnetwork/lnd 2 https://github.com/go-jose/go-jose 2 https://github.com/gohugoio/hugo 2 https://github.com/cosmos/ethermint 2 https://github.com/go-git/go-git 2 https://github.com/vitessio/vitess 2 https://github.com/crypto-org-chain/cronos 2 https://github.com/flynn/noise 2 https://github.com/fluid-cloudnative/fluid 2 https://github.com/distribution/distribution 2 https://github.com/fleetdm/fleet 2 https://github.com/fkie-cad/yapscan 2 https://github.com/facebook/fbthrift 2 https://github.com/drakkan/sftpgo 2 https://github.com/envoyproxy/envoy 2 https://github.com/elastic/beats 2 https://github.com/edgelesssys/marblerun 2 https://github.com/dvsekhvalnov/jose2go 2 https://github.com/theupdateframework/go-tuf 2 https://github.com/heroiclabs/nakama 2 https://github.com/hashicorp/terraform 2 https://github.com/cloudflare/circl 2 https://github.com/cloudflare/cloudflared 2 https://github.com/codenotary/immudb 2 https://github.com/gphper/ginadmin 2 https://github.com/Consensys/gnark-crypto 2 https://github.com/containers/libpod 2 https://github.com/gotify/server 2 https://github.com/ulikunitz/xz 2 https://github.com/woodpecker-ci/woodpecker 2 https://github.com/coredns/coredns 2 https://github.com/google/exposure-notifications-verification-server 2 https://github.com/coreos/etcd 2 https://github.com/unknwon/cae 2 https://github.com/golang/crypto 2 https://github.com/ecnepsnai/web 2 https://github.com/russellhaering/goxmldsig 2 https://github.com/ntbosscher/gobase 2 https://github.com/stripe/smokescreen 2 https://github.com/projectdiscovery/nuclei 2 https://github.com/Netflix/security-bulletins 2 https://github.com/pingcap/tidb 2 https://github.com/peterzen/goresolver 2 https://github.com/sigstore/rekor 2 https://github.com/multiversx/mx-chain-go 2 https://github.com/mutagen-io/mutagen 2 https://github.com/openshift/apiserver-library-go 2 https://github.com/owncast/owncast 2