Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go Security Advisories

Loading...
High
GSA_kwCzR0hTQS12d2c0LTg0NngtZjk0ds4AAwkW
usememos/memos vulnerable to improper authorization
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1xcjUyLTU5cjYtNDlmNM4AAwkX
usememos/memos Improper Access Control vulnerability
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1jOGpoLXZjamgtZngyd84AAwkR
usememos/memos vulnerable to stored cross-site scripting (XSS)
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS02OGd3LXIyeDUtN3I1cs4AAwkY
usememos/memos Authorization Bypass Through User-Controlled Key vulnerability
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1mdjZjLXJmZzMtZ3Zqd84AAwkU
usememos/memos makes Incorrect Use of Privileged APIs
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS13NTd2LTZ4cDQtcm0yds4AAwkT
usememos/memos vulnerable to account takeover due to improper access control
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1xY3cyLTQ5MnYtNTd4as4AAwkV
usememos/memos missing Secure cookie attribute
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1jamNjLTQ2ajgteG1yOM4AAwgn
destiny.gg chat vulnerable to cross-site request forgery
Ecosystems: go
Packages: github.com/destinygg/chat
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS02bTRoLWhmcHAteDhjeM4AAwgV
docconv OS Command Injection vulnerability
Ecosystems: go
Packages: code.sajari.com/docconv, github.com/sajari/docconv
Source: GitHub Advisory Database
Blast Radius: 24.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02Y212LTI1NDgtODJ2NM4AAwfm
leanote vulnerable to cross-site scripting
Ecosystems: go
Packages: github.com/leanote/leanote
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1ndzYyLWM3dzQteDQ0Oc4AAwf_
studygolang vulnerable to cross-site scripting
Ecosystems: go
Packages: github.com/studygolang/studygolang
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1wODJxLXJ4cG0taGpwY84AAwfe
AAD Pod Identity obtaining token with backslash
Ecosystems: go
Packages: github.com/Azure/aad-pod-identity
Source: GitHub Advisory Database
Blast Radius: 11.3
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tM2NxLXhjeDktM2d2bc4AAweX
kyverno verifyImages rule bypass possible with malicious proxy/registry
Ecosystems: go
Packages: github.com/kyverno/kyverno
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tM3E0LTdxbWotNjU3bc4AAwcc
OpenFGA Authorization Bypass
Ecosystems: go
Packages: github.com/openfga/openfga
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1oNHE4LTk2cDYtamNncs4AAwbW
ghinstallation returns app JWT in error responses
Ecosystems: go
Packages: github.com/bradleyfalzon/ghinstallation
Source: GitHub Advisory Database
Blast Radius: 12.8
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1jcTJnLXB3NnEtaGY3as4AAwaq
Cortex's Alertmanager can expose local files content via specially crafted config
Ecosystems: go
Packages: github.com/cortexproject/cortex
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1yZ2o1LWpqNXEtdjN2N84AAwZz
Memos Cross-site Scripting vulnerability
Ecosystems: go
Packages: github.com/usememos/memos
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1wbWcyLXJwaDgtcDhyNs4AAwYe
Alist vulnerable to Path Traversal
Ecosystems: go
Packages: github.com/alist-org/alist/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02N2Z4LXd4NzgtangzM84AAwWy
Helm vulnerable to denial of service through schema file
Ecosystems: go
Packages: helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01M2M0LWhobWgtdnc1cc4AAwWx
Helm vulnerable to denial of service through through repository index file
Ecosystems: go
Packages: helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02cng5LTg4OXEtdnYycs4AAwWw
Helm vulnerable to denial of service through string value parsing
Ecosystems: go
Packages: helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14eGZ4LXcycnctZ2g2M84AAwVh
csaf-poc/csaf_distribution Cross-site Scripting vulnerability
Ecosystems: go
Packages: github.com/csaf-poc/csaf_distribution
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS05NTdtLWc2cmYtNGMybc4AAwQc
Alist Cross-site Scripting vulnerability
Ecosystems: go
Packages: github.com/alist-org/alist/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS00Z2pyLXZnZngtOXF2d84AAwP5
AList vulnerable to Improper Preservation of Permissions
Ecosystems: go
Packages: github.com/alist-org/alist/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qOHgyLTJtNXctajkzOc4AAwP0
Amazon CloudWatch Agent for Windows has Privilege Escalation Vector
Ecosystems: go
Packages: github.com/aws/amazon-cloudwatch-agent
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14cmpqLW1qOWgtNTM0bc4AAwOh
golang.org/x/net/http2 vulnerable to possible excessive memory growth
Ecosystems: go
Packages: golang.org/x/net/http2
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS00Y3J3LXc4cHctMmhtZs4AAwOT
Buildah (as part of Podman) vulnerable to Link Following
Ecosystems: go
Packages: github.com/containers/podman/v4
Source: GitHub Advisory Database
Blast Radius: 10.1
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1ycHJnLTR2N3EtODd2N84AAwOX
Buildah (as part of Podman) vulnerable to Path Traversal
Ecosystems: go
Packages: github.com/containers/podman/v4
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: over 1 year ago
High
GSA_kwCzR0hTQS14MzlqLWg4NWgtM2Y0Ns4AAwNX
go-merkledag's ProtoNode may be modified such that common method calls may panic
Ecosystems: go
Packages: github.com/ipfs/go-merkledag
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1oMnBoLXZobTctZzRocM4AAwNV
Traefik may display authorization header in the debug logs
Ecosystems: go
Packages: github.com/traefik/traefik/v2
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS00Njh3LTh4MzktZ2o1ds4AAwNU
Traefik routes exposed with an empty TLSOption
Ecosystems: go
Packages: github.com/traefik/traefik/v2
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0ycWpwLTQyNWotNTJqOc4AAwM4
containerd CRI stream server vulnerable to host memory exhaustion via terminal
Ecosystems: go
Packages: github.com/containerd/containerd
Source: GitHub Advisory Database
Blast Radius: 25.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qN3FwLW1meGYtOHhqd84AAwM3
libp2p DoS vulnerability from lack of resource management
Ecosystems: go
Packages: github.com/libp2p/go-libp2p
Source: GitHub Advisory Database
Blast Radius: 25.5
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1qNDUzLWhtNXgtYzQ2d84AAwMu
Echo vulnerable to directory traversal
Ecosystems: go
Packages: github.com/labstack/echo/v4
Source: GitHub Advisory Database
Blast Radius: 22.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS1mOTNmLTU1YzItOGM4Oc4AAwL_
Casdoor arbitrary file deletion vulnerability via uploadFile function
Ecosystems: go
Packages: github.com/casdoor/casdoor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Low
GSA_kwCzR0hTQS14cjdwLThxODItODc4cc4AAwLZ
teler dashboard vulnerable to DOM-based cross-site scripting (XSS)
Ecosystems: go
Packages: teler.app
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS14NDVjLWN2cDgtcTRmbc4AAwJ5
Capsule vulnerable to privilege escalation by ServiceAccount deployed in a Tenant Namespace
Ecosystems: go
Packages: github.com/clastix/capsule
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: over 1 year ago
High
GSA_kwCzR0hTQS00djQ4LTRxNW0tOHZ4NM4AAwJ2
Prometheus vulnerable to basic authentication bypass
Ecosystems: go
Packages: github.com/prometheus/prometheus/v2, github.com/prometheus/prometheus
Source: GitHub Advisory Database
Blast Radius: 26.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS03cmcyLWN4dnAtOXA3cM4AAwIP
Prometheus Exporter-Toolkit is vulnerable to authentication bypass
Ecosystems: go
Packages: github.com/prometheus/exporter-toolkit
Source: GitHub Advisory Database
Blast Radius: 20.5
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS00N3hoLXF4cXYtbWd2Z84AAwIN
kube-httpcache is vulnerable to Cross-Site Request Forgery (CSRF)
Ecosystems: go
Packages: github.com/mittwald/kube-httpcache
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1qMmpwLXd2cWctd2MyZ84AAwFN
crewjam/saml vulnerable to signature bypass via multiple Assertion elements due to improper authentication
Ecosystems: go
Packages: github.com/crewjam/saml
Source: GitHub Advisory Database
Blast Radius: 26.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1jdmg0LWNqYzktODRxbc4AAwFH
owncast is vulnerable to SQL Injection
Ecosystems: go
Packages: github.com/owncast/owncast
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS0yMnZjLTVwZ3ctNjQ0cc4AAwDN
KubeView vulnerable to full cluster takeover due to improper authentication
Ecosystems: go
Packages: github.com/benc-uk/kubeview
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS12NDJmLWhxNzgtOGM1bc4AAwBK
Denial of service in Mattermost
Ecosystems: go
Packages: github.com/mattermost/mattermost-server
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01anBoLXdycTctdjloZs4AAwBJ
Denial of service in Mattermost
Ecosystems: go
Packages: github.com/mattermost/mattermost-server
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1xY2NtLXdtY3EtcHdyNs4AAv_M
Tailscale daemon is vulnerable to information disclosure via CSRF
Ecosystems: go
Packages: tailscale.com/cmd
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS12cXA2LXJjM2gtODNjcM4AAv_L
Tailscale Windows daemon is vulnerable to RCE via CSRF
Ecosystems: go
Packages: tailscale.com
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: over 1 year ago
High
GSA_kwCzR0hTQS1wcDNmLXhydzUtcTVqNM4AAv_J
Lancet vulnerable to path traversal when unzipping files
Ecosystems: go
Packages: github.com/duke-git/lancet, github.com/duke-git/lancet/v2
Source: GitHub Advisory Database
Blast Radius: 15.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02Y3FqLTY5NjktcDU3eM4AAv-p
Lack of proper validation of server UUID can be used by the server to trick the client to accept invalid proofs
Ecosystems: go
Packages: github.com/codenotary/immudb
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02NzJwLW01anEtbXJoOM4AAv-o
Insufficient Verification of Proofs generated by the immudb server in client SDK.
Ecosystems: go
Packages: github.com/codenotary/immudb
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tNzR4LWZ4amgtM3FoOc4AAv9L
Free5gc vulnerable to uncontrolled resource consumption
Ecosystems: go
Packages: github.com/free5gc/free5gc
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1oYzgyLXc5djgtODNwcs4AAv8P
Witness Block Parsing DoS Vulnerability
Ecosystems: go
Packages: github.com/lightningnetwork/lnd
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1tNXhmLXg3cTYtM3JtN84AAv8J
KubeVela VelaUX APIserver has SSRF vulnerability
Ecosystems: go
Packages: github.com/oam-dev/kubevela
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1ndzJnLWhoYzktd2dqaM4AAv5M
Missing Authorization in HashiCorp Consul
Ecosystems: go
Packages: github.com/hashicorp/consul
Source: GitHub Advisory Database
Blast Radius: 26.1
Published: over 1 year ago
High
GSA_kwCzR0hTQS1wcmpxLWY0cTMtZnZmcs4AAv43
github.com/russellhaering/gosaml2 is vulnerable to NULL Pointer Dereference
Ecosystems: go
Packages: github.com/russellhaering/goxmldsig, github.com/russellhaering/gosaml2
Source: GitHub Advisory Database
Blast Radius: 23.9
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qcjc3LThneDQtaDVxaM4AAv0s
MessagePack for Golang subject to DoS via Unmarshal panic
Ecosystems: go
Packages: github.com/shamaton/msgpack/v2
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: over 1 year ago
Low
GSA_kwCzR0hTQS12cDM1LTg1cTUtOWYyNc4AAv0i
Container build can leak any path on the host into the container
Ecosystems: go
Packages: github.com/moby/moby
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS05OWc1LTU2NDMteHBocM4AAv0J
mm-wiki is vulnerable to Cross-Site Scripting (XSS)
Ecosystems: go
Packages: github.com/phachon/mm-wiki
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS03d2c0LThtNXAtaHJmZ84AAvyQ
HashiCorp Nomad vulnerable to non-sensitive metadata exposure
Ecosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: over 1 year ago
Low
GSA_kwCzR0hTQS05Zm1jLTVmcTQtNWp3aM4AAvx0
HashiCorp Nomad vulnerable to Insufficient Session Expiration
Ecosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: over 1 year ago
High
GSA_kwCzR0hTQS02YzZwLWg3OWYtZzZwNM4AAvxx
Istio may allow identity impersonation if user has localhost access
Ecosystems: go
Packages: github.com/istio/istio
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS01bTdnLXBqOHctNzU5M84AAvxv
Vela Insecure Defaults
Ecosystems: go
Packages: github.com/go-vela/worker, github.com/go-vela/server
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0zZ2ZqLWZ4eDQtZjIyd84AAvv1
OpenFGA Authorization Bypass
Ecosystems: go
Packages: github.com/openfga/openfga
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS0yY2hnLTg2aHEtN3czOM4AAvue
btcd mishandles witness size checking
Ecosystems: go
Packages: github.com/btcsuite/btcd, github.com/lightningnetwork/lnd
Source: GitHub Advisory Database
Blast Radius: 39.4
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS03ZnhqLWZyM3Ytcjlnas4AAvtj
TiDB vulnerable to Use of Externally-Controlled Format String
Ecosystems: go
Packages: github.com/pingcap/tidb
Source: GitHub Advisory Database
Blast Radius: 26.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS1mY2dmLWo4Y2YtaDJybc4AAvoS
IBAX go-ibax vulnerable to SQL injection
Ecosystems: go
Packages: github.com/IBAX-io/go-ibax
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1yd2NmLWdxMjItcGg4M84AAvoH
IBAX go-ibax vulnerable to SQL injection
Ecosystems: go
Packages: github.com/IBAX-io/go-ibax
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tNzM4LTU4NGgtMjZwNs4AAvn6
IBAX go-ibax vulnerable to SQL injection
Ecosystems: go
Packages: github.com/IBAX-io/go-ibax
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tZ3FoLTNxbTctZ3g4Ms4AAvoA
IBAX go-ibax vulnerable to SQL injection
Ecosystems: go
Packages: github.com/IBAX-io/go-ibax
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1nMjNnLW13OTctNjVjOM4AAvoa
IBAX go-ibax vulnerable to SQL injection
Ecosystems: go
Packages: github.com/IBAX-io/go-ibax
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1wbXc5LTU2N3AtNjhwY84AAvmZ
OctoRPKI crashes when max iterations is reached
Ecosystems: go
Packages: github.com/cloudflare/cfrpki
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14cXYyLTN2dnEtcWc2cs4AAvkJ
Hashicorp Boundary vulnerable to clickjacking
Ecosystems: go
Packages: github.com/hashicorp/boundary
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS03Z2M0LXI1anItOWh4ds4AAvim
Gin-vue-admin subject to Remote Code Execution via file upload vulnerability
Ecosystems: go
Packages: github.com/flipped-aurora/gin-vue-admin/server
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1mMnJqLW00MnItNmptMs4AAvil
Skipper vulnerable to SSRF via X-Skipper-Proxy
Ecosystems: go
Packages: github.com/zalando/skipper
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS12ajRtLTgzbTgteHB3Nc4AAvii
OpenFGA Authorization Bypass via tupleset wildcard
Ecosystems: go
Packages: github.com/openfga/openfga
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1mNG1tLTJyNjktbWc1Zs4AAvih
OpenFGA Authorization Bypass
Ecosystems: go
Packages: github.com/openfga/openfga
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS05NXg3LW1oNzgtN3cycs4AAvig
OpenFGA subject to Information Disclosure via streamed-list-objects endpoint
Ecosystems: go
Packages: github.com/openfga/openfga
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01OWhqLTYyZjUtZmdtY84AAvg6
free5GC vulnerable to malformed NGAP message crashing the AMF and NGAP decoders
Ecosystems: go
Packages: github.com/free5gc/free5gc
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01anAyLXZ3cmotOTlyZs4AAvd3
Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution
Ecosystems: go
Packages: github.com/concourse/concourse
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1mNHA1LXg0dmMtbWg0ds4AAvcq
Improper use of metav1.Duration allows for Denial of Service
Ecosystems: go
Packages: github.com/fluxcd/source-controller/api, github.com/fluxcd/notification-controller/api, github.com/fluxcd/kustomize-controller/api, github.com/fluxcd/image-reflector-controller/api, github.com/fluxcd/image-automation-controller/api, github.com/fluxcd/helm-controller/api, github.com/fluxcd/image-reflector-controller, github.com/fluxcd/image-automation-controller, github.com/fluxcd/notification-controller, github.com/fluxcd/helm-controller, github.com/fluxcd/kustomize-controller, github.com/fluxcd/source-controller, github.com/fluxcd/flux2
Source: GitHub Advisory Database
Blast Radius: 10.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS1teHJ4LWZnOHAtNXA1as4AAvaq
Bifrost vulnerable to authentication check flaw that leads to authentication bypass
Ecosystems: go
Packages: github.com/brokercap/Bifrost
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qOTJjLW1tZjctajV4Nc4AAvaR
Potential inter-blockchain communication (IBC) protocol compromise via "Dragonberry" vulnerability in cheqd
Ecosystems: go
Packages: github.com/cheqd/cheqd-node
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS13OHh3LTdjcmYtaDIzeM4AAvXZ
Gitea vulnerable to Argument Injection
Ecosystems: go
Packages: github.com/go-gitea/gitea
Source: GitHub Advisory Database
Blast Radius: 15.8
Published: over 1 year ago
High
GSA_kwCzR0hTQS02OWNoLXcybTItM3ZqcM4AAvV0
golang.org/x/text/language Denial of service via crafted Accept-Language header
Ecosystems: go
Packages: golang.org/x/text
Source: GitHub Advisory Database
Blast Radius: 40.9
Published: over 1 year ago
High
GSA_kwCzR0hTQS1xajZyLWZocmMtamo1cs4AAvUB
Remote denial of service in Hyperledger Fabric Gateway
Ecosystems: go
Packages: github.com/hyperledger/fabric
Source: GitHub Advisory Database
Blast Radius: 18.2
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS03djNnLTQ4NzgtNXFyZs4AAvRN
Nomad Panics On Job Submission With Bad Artifact Stanza Source URL
Ecosystems: go
Packages: github.com/hashicorp/nomad
Source: GitHub Advisory Database
Blast Radius: 15.1
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1tY2pqLTJmdnEtbWMzcs4AAvPZ
Gogs vulnerable to Cross-site Scripting
Ecosystems: go
Packages: gogs.io/gogs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1td3djLTNqdjItNjJqM84AAvPW
AdGuardHome vulnerable to Cross-Site Request Forgery
Ecosystems: go
Packages: github.com/AdguardTeam/AdGuardHome
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
High
GSA_kwCzR0hTQS1jNmh4LXBqYzMtN2Zxcs4AAvOE
Traefik HTTP/2 connections management could cause a denial of service
Ecosystems: go
Packages: github.com/traefik/traefik/v2
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14Mjc5LTY4cnItanA0cM4AAvME
Blst vulnerable to incorrect results for some inputs in blst_fp_eucl_inverse function
Ecosystems: go
Packages: github.com/supranational/blst
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1wNjU4LTg2OTMtbWh2Z84AAvMD
Tendermint Core vulnerable to Uncontrolled Resource Consumption
Ecosystems: go
Packages: github.com/tendermint/tendermint
Source: GitHub Advisory Database
Blast Radius: 22.6
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS05M203LWM2OWYtNWNmas4AAvMA
xmlquery lacks check for whether LoadURL response is in XML format, causing denial of service
Ecosystems: go
Packages: github.com/antchfx/xmlquery
Source: GitHub Advisory Database
Blast Radius: 32.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tcXF2LWNocHgtdnEyNc4AAvL_
goxmldsig vulnerable to crash on nil-pointer dereference caused by sending malformed XML signatures
Ecosystems: go
Packages: github.com/russellhaering/gosaml2, github.com/russellhaering/goxmldsig
Source: GitHub Advisory Database
Blast Radius: 23.9
Published: over 1 year ago
Low
GSA_kwCzR0hTQS05Z3A3LTY4MzMtd3Y4Oc4AAvLw
etcd having a negative value for cluster node size results in an index out-of-bound panic during service discovery
Ecosystems: go
Packages: go.etcd.io/etcd/client/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Low
GSA_kwCzR0hTQS01MjhqLTlyNzgtd2ZmeM4AAvLv
etcd user credentials are stored in WAL logs in plaintext
Ecosystems: go
Packages: go.etcd.io/etcd/client/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS00OTkzLW03ZzUtcjloaM4AAvLu
etcd has no minimum password length
Ecosystems: go
Packages: go.etcd.io/etcd/client/v3
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1oOGc5LTZndmgtNW1yY84AAvLt
etcd vulnerable to TOCTOU of gateway endpoint authentication
Ecosystems: go
Packages: go.etcd.io/etcd/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1tMzMyLTUzcjYtMnc5M84AAvLs
etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panic
Ecosystems: go
Packages: go.etcd.io/etcd/v3
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1ncjd3LXgyanAtM3hnd84AAvLr
Caddy vulnerable to Authentication Bypass due to mishandling of TLS client authentication
Ecosystems: go
Packages: github.com/caddyserver/caddy
Source: GitHub Advisory Database
Blast Radius: 32.7
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1tNW0zLTQ2Z2otd2NoOM4AAvLn
SIF's Digital Signature Hash Algorithms Not Validated
Ecosystems: go
Packages: github.com/sylabs/sif/v2
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: over 1 year ago
Statistics
Advisories: 18,330
Packages: 8,279
Repositories: 534
Ecosystems: 12
Filter by Severity
Moderate 7,912 High 6,344 Critical 2,806 Low 981
Filter by Ecosystem
maven 5,520 packagist 3,801 pypi 3,705 npm 3,535 go 1,889 nuget 1,390 rubygems 814 cargo 776 swift 31 hex 30 actions 16 pub 8
Filter by Package
github.com/usememos/memos 59 github.com/mattermost/mattermost/server/v8 38 github.com/mattermost/mattermost-server/v6 37 github.com/answerdev/answer 34 k8s.io/kubernetes 32 github.com/argoproj/argo-cd 29 github.com/hashicorp/vault 28 github.com/grafana/grafana 28 github.com/rancher/rancher 28 github.com/hashicorp/nomad 26 github.com/hashicorp/consul 26 gogs.io/gogs 24 github.com/argoproj/argo-cd/v2 23 github.com/cilium/cilium 20 github.com/ethereum/go-ethereum 19 github.com/docker/docker 19 code.gitea.io/gitea 19 helm.sh/helm/v3 18 golang.org/x/net 17 github.com/goharbor/harbor 15 github.com/nats-io/nats-server/v2 13 github.com/mattermost/mattermost-server 13 github.com/traefik/traefik/v2 13 github.com/containerd/containerd 13 github.com/moby/moby 12 github.com/go-gitea/gitea 12 github.com/opencontainers/runc 12 github.com/zitadel/zitadel 11 github.com/openfga/openfga 11 github.com/cloudflare/cfrpki 11 github.com/1Panel-dev/1Panel 10 github.com/greenpau/caddy-security 10 github.com/cosmos/cosmos-sdk 10 golang.org/x/crypto 9 github.com/kubernetes/kubernetes 9 github.com/cri-o/cri-o 9 github.com/sylabs/singularity 9 istio.io/istio 8 github.com/containers/podman/v4 8 github.com/pomerium/pomerium 8 github.com/kubeedge/kubeedge 8 go.etcd.io/etcd 8 github.com/nats-io/jwt 7 github.com/traefik/traefik 7 github.com/beego/beego 7 k8s.io/ingress-nginx 7 helm.sh/helm 7 github.com/google/fscrypt 7 github.com/hashicorp/go-getter 7 github.com/authzed/spicedb 6 github.com/russellhaering/gosaml2 6 github.com/hyperledger/fabric 6 github.com/cubefs/cubefs 6 github.com/apache/trafficcontrol 6 github.com/gravitl/netmaker 6 github.com/pion/dtls 6 github.com/treeverse/lakefs 6 github.com/beego/beego/v2 6 github.com/russellhaering/goxmldsig 6 github.com/pterodactyl/wings 6 github.com/sigstore/cosign 6 github.com/fluxcd/flux2 6 kubevirt.io/kubevirt 5 github.com/hashicorp/go-getter/v2 5 github.com/tidwall/gjson 5 github.com/containers/buildah 5 github.com/schollz/croc/v9 5 github.com/KubeOperator/kubepi 5 github.com/apache/incubator-answer 5 github.com/mattermost/mattermost-server/v5 5 github.com/fluxcd/kustomize-controller 5 github.com/gofiber/fiber/v2 5 github.com/moby/buildkit 5 github.com/IBAX-io/go-ibax 5 github.com/kyverno/kyverno 5 github.com/pion/dtls/v2 5 go.etcd.io/etcd/v3 5 github.com/cometbft/cometbft 5 github.com/kiali/kiali 5 github.com/0xJacky/Nginx-UI 5 github.com/ipfs/go-ipfs 5 github.com/tendermint/tendermint 5 github.com/foxcpp/maddy 5 github.com/traefik/traefik/v3 5 github.com/gophish/gophish 5 github.com/open-policy-agent/opa 4 github.com/free5gc/free5gc 4 golang.org/x/net/http2 4 github.com/dhowden/tag 4 github.com/aws/aws-sdk-go 4 github.com/crewjam/saml 4 github.com/arduino/arduino-create-agent 4 github.com/concourse/concourse 4 github.com/casdoor/casdoor 4 github.com/containers/podman/v3 4 github.com/argoproj/argo-workflows/v3 4 github.com/dexidp/dex 4 github.com/alist-org/alist/v3 4 github.com/oauth2-proxy/oauth2-proxy 4 github.com/ory/fosite 4 github.com/caddyserver/caddy 4 github.com/lestrrat-go/jwx 4 github.com/lestrrat-go/jwx/v2 4 github.com/hashicorp/go-getter/gcs/v2 4 github.com/IceWhaleTech/CasaOS-UserService 4 github.com/gin-gonic/gin 4 github.com/git-lfs/git-lfs 4 github.com/hashicorp/go-getter/s3/v2 4 github.com/phachon/mm-wiki 3 github.com/hashicorp/vault/vault 3 github.com/flyteorg/flyteadmin 3 github.com/cheqd/cheqd-node 3 github.com/nats-io/jwt/v2 3 github.com/go-vela/server 3 github.com/apache/servicecomb-service-center 3 github.com/docker/distribution 3 github.com/navidrome/navidrome 3 github.com/coredns/coredns 3 github.com/syncthing/syncthing 3 github.com/ElrondNetwork/elrond-go 3 github.com/jackc/pgx/v4 3 gopkg.in/yaml.v2 3 github.com/cortexproject/cortex 3 github.com/minio/minio 3 github.com/consensys/gnark 3 go.etcd.io/etcd/client/v3 3 github.com/projectcalico/calico 3 github.com/lightningnetwork/lnd 3 github.com/ory/oathkeeper 3 github.com/notaryproject/notation 3 github.com/fluxcd/helm-controller 3 golang.org/x/text 3 github.com/sigstore/cosign/v2 3 github.com/quic-go/quic-go 3 github.com/stacklok/minder 3 github.com/heketi/heketi 3 github.com/owncast/owncast 3 github.com/openshift/origin 3 k8s.io/client-go 3 github.com/miekg/dns 3 github.com/libp2p/go-libp2p 3 github.com/tharsis/evmos 3 github.com/authelia/authelia/v4 3 github.com/crossplane/crossplane 3 golang.org/x/image 3 github.com/crypto-org-chain/cronos 3 github.com/hashicorp/boundary 3 github.com/mholt/archiver 3 github.com/dutchcoders/transfer.sh 3 github.com/weaveworks/weave-gitops 3 github.com/edgelesssys/constellation/v2 3 github.com/square/go-jose 3 github.com/artifacthub/hub 3 github.com/cloudflare/circl 2 gopkg.in/src-d/go-git.v4 2 github.com/woodpecker-ci/woodpecker 2 github.com/minio/console 2 github.com/go-yaml/yaml 2 github.com/ansible-semaphore/semaphore 2 github.com/pires/go-proxyproto 2 github.com/rancher/wrangler 2 github.com/flynn/noise 2 github.com/gphper/ginadmin 2 mellium.im/xmpp 2 github.com/clastix/capsule-proxy 2 github.com/etcd-io/etcd 2 github.com/mutagen-io/mutagen 2 github.com/unknwon/cae 2 github.com/openshift/apiserver-library-go 2 vitess.io/vitess 2 github.com/bytebase/bytebase 2 github.com/hashicorp/terraform 2 github.com/edgexfoundry/app-functions-sdk-go/v2 2 github.com/influxdata/influxdb 2 github.com/protocolbuffers/protobuf 2 github.com/gotify/server 2 github.com/brokercap/Bifrost 2 github.com/imgproxy/imgproxy/v3 2 github.com/prometheus/prometheus 2 github.com/dvsekhvalnov/jose2go 2 github.com/containers/podman/v2 2 github.com/pingcap/tidb 2 github.com/microcosm-cc/bluemonday 2 github.com/sap/cloud-security-client-go 2 github.com/facebook/fbthrift 2 github.com/talos-systems/talos 2 protobuf 2 github.com/flipped-aurora/gin-vue-admin/server 2 github.com/containers/podman 2 github.com/swaggo/http-swagger 2 github.com/gohugoio/hugo 2 github.com/apache/thrift 2 github.com/labstack/echo/v4 2 github.com/ipld/go-codec-dagpb 2 github.com/codenotary/immudb 2 github.com/kata-containers/runtime 2 github.com/ecnepsnai/web 2 github.com/kitabisa/teler-waf 2 github.com/IceWhaleTech/CasaOS 2 github.com/projectcapsule/capsule-proxy 2
Filter by Repository
https://github.com/usememos/memos 59 https://github.com/kubernetes/kubernetes 48 https://github.com/argoproj/argo-cd 37 https://github.com/answerdev/answer 34 https://github.com/go-gitea/gitea 31 https://github.com/rancher/rancher 25 https://github.com/grafana/grafana 21 https://github.com/cilium/cilium 20 https://github.com/gogs/gogs 20 https://github.com/hashicorp/consul 19 https://github.com/helm/helm 19 https://github.com/hashicorp/vault 16 https://github.com/etcd-io/etcd 16 https://github.com/goharbor/harbor 15 https://github.com/ethereum/go-ethereum 15 https://github.com/mattermost/mattermost 14 https://github.com/moby/moby 14 https://github.com/traefik/traefik 13 https://github.com/hashicorp/nomad 13 https://github.com/containerd/containerd 13 https://github.com/golang/go 13 https://github.com/opencontainers/runc 11 https://github.com/openfga/openfga 11 https://github.com/zitadel/zitadel 11 https://github.com/containers/podman 11 https://github.com/cloudflare/cfrpki 11 https://github.com/nats-io/nats-server 10 https://github.com/cosmos/cosmos-sdk 10 https://github.com/1Panel-dev/1Panel 10 https://github.com/greenpau/caddy-security 10 https://github.com/cri-o/cri-o 9 https://github.com/istio/istio 8 https://github.com/kubeedge/kubeedge 8 https://github.com/pomerium/pomerium 8 https://github.com/docker/docker 8 https://github.com/kubernetes/ingress-nginx 7 https://github.com/beego/beego 7 https://github.com/hashicorp/go-getter 7 https://github.com/google/fscrypt 7 https://github.com/hpcng/singularity 7 https://github.com/pterodactyl/wings 6 https://github.com/schollz/croc 6 https://github.com/sigstore/cosign 6 https://github.com/pion/dtls 6 https://github.com/moby/buildkit 6 https://github.com/hyperledger/fabric 6 https://github.com/treeverse/lakeFS 6 https://github.com/gravitl/netmaker 6 https://github.com/authzed/spicedb 6 https://github.com/containers/buildah 6 https://github.com/fluxcd/flux2 6 https://github.com/cubefs/cubefs 6 https://github.com/0xJacky/nginx-ui 5 https://github.com/argoproj/argo-workflows 5 https://github.com/russellhaering/gosaml2 5 https://github.com/cometbft/cometbft 5 https://github.com/crewjam/saml 5 https://github.com/foxcpp/maddy 5 https://github.com/free5gc/free5gc 5 https://github.com/gofiber/fiber 5 https://github.com/gophish/gophish 5 https://github.com/kyverno/kyverno 5 https://github.com/IBAX-io/go-ibax 5 https://github.com/ipfs/go-ipfs 5 https://github.com/tidwall/gjson 5 https://github.com/tendermint/tendermint 5 https://github.com/casdoor/casdoor 4 https://github.com/IceWhaleTech/CasaOS-UserService 4 https://github.com/caddyserver/caddy 4 https://github.com/oauth2-proxy/oauth2-proxy 4 https://github.com/grafana/bugbounty 4 https://github.com/open-policy-agent/opa 4 https://github.com/git-lfs/git-lfs 4 https://github.com/siderolabs/talos 4 https://github.com/aws/aws-sdk-go 4 https://github.com/gin-gonic/gin 4 https://github.com/concourse/concourse 4 https://github.com/dexidp/dex 4 https://github.com/nats-io/jwt 4 https://github.com/kubevirt/kubevirt 4 https://github.com/arduino/arduino-create-agent 4 https://github.com/dhowden/tag 4 https://github.com/lestrrat-go/jwx 4 https://github.com/ory/fosite 4 https://github.com/containous/traefik 4 https://github.com/ory/oathkeeper 3 https://github.com/open-telemetry/opentelemetry-go-contrib 3 https://github.com/u-root/u-root 3 https://github.com/gogits/gogs 3 https://github.com/phachon/mm-wiki 3 https://github.com/flyteorg/flyteadmin 3 https://github.com/flipped-aurora/gin-vue-admin 3 https://github.com/evmos/evmos 3 https://github.com/ElrondNetwork/elrond-go 3 https://github.com/edgelesssys/constellation 3 https://github.com/openshift/origin 3 https://github.com/go-vela/server 3 https://github.com/go-yaml/yaml 3 https://github.com/heketi/heketi 3 https://github.com/ipfs/boxo 3 https://github.com/kiali/kiali 3 https://github.com/KubeOperator/KubePi 3 https://github.com/navidrome/navidrome 3 https://github.com/tailscale/tailscale 3 https://github.com/kubernetes-sigs/secrets-store-csi-driver 3 https://github.com/syncthing/syncthing 3 https://github.com/libp2p/go-libp2p 3 https://github.com/sylabs/singularity 3 https://github.com/moby/libnetwork 3 https://github.com/minio/minio 3 https://github.com/stacklok/minder 3 https://github.com/cheqd/cheqd-node 3 https://github.com/Consensys/gnark 3 https://github.com/authelia/authelia 3 https://github.com/artifacthub/hub 3 https://github.com/cortexproject/cortex 3 https://github.com/weaveworks/weave-gitops 3 https://github.com/crossplane/crossplane 3 https://github.com/quic-go/quic-go 3 https://github.com/apache/trafficcontrol 3 https://github.com/alist-org/alist 3 https://github.com/square/go-jose 3 https://github.com/dutchcoders/transfer.sh 3 https://github.com/IceWhaleTech/CasaOS 2 https://github.com/minio/console 2 https://github.com/imgproxy/imgproxy 2 https://github.com/bytebase/bytebase 2 https://github.com/influxdata/influxdb 2 https://github.com/buger/jsonparser 2 https://github.com/brokercap/Bifrost 2 https://github.com/miekg/dns 2 https://github.com/ipld/go-codec-dagpb 2 https://github.com/jackc/pgproto3 2 https://github.com/bottlerocket-os/bottlerocket 2 https://github.com/kitabisa/teler 2 https://github.com/kitabisa/teler-waf 2 https://github.com/temporalio/temporal 2 https://github.com/bitly/oauth2_proxy 2 https://github.com/zinclabs/zinc 2 https://github.com/atredispartners/advisories 2 https://github.com/argoproj/argo-events 2 https://github.com/zalando/skipper 2 https://github.com/microcosm-cc/bluemonday 2 https://github.com/apptainer/apptainer 2 https://github.com/mholt/archiver 2 https://github.com/labring/sealos 2 https://github.com/mellium/xmpp 2 https://github.com/mattermost/mattermost-plugin-jira 2 https://github.com/labstack/echo 2 https://github.com/1Panel-dev/KubePi 2 https://github.com/Masterminds/goutils 2 https://github.com/lightningnetwork/lnd 2 https://github.com/go-jose/go-jose 2 https://github.com/gohugoio/hugo 2 https://github.com/cosmos/ethermint 2 https://github.com/go-git/go-git 2 https://github.com/vitessio/vitess 2 https://github.com/crypto-org-chain/cronos 2 https://github.com/flynn/noise 2 https://github.com/fluid-cloudnative/fluid 2 https://github.com/distribution/distribution 2 https://github.com/fleetdm/fleet 2 https://github.com/fkie-cad/yapscan 2 https://github.com/facebook/fbthrift 2 https://github.com/drakkan/sftpgo 2 https://github.com/envoyproxy/envoy 2 https://github.com/elastic/beats 2 https://github.com/edgelesssys/marblerun 2 https://github.com/dvsekhvalnov/jose2go 2 https://github.com/theupdateframework/go-tuf 2 https://github.com/heroiclabs/nakama 2 https://github.com/hashicorp/terraform 2 https://github.com/cloudflare/circl 2 https://github.com/cloudflare/cloudflared 2 https://github.com/codenotary/immudb 2 https://github.com/gphper/ginadmin 2 https://github.com/Consensys/gnark-crypto 2 https://github.com/containers/libpod 2 https://github.com/gotify/server 2 https://github.com/ulikunitz/xz 2 https://github.com/woodpecker-ci/woodpecker 2 https://github.com/coredns/coredns 2 https://github.com/google/exposure-notifications-verification-server 2 https://github.com/coreos/etcd 2 https://github.com/unknwon/cae 2 https://github.com/golang/crypto 2 https://github.com/ecnepsnai/web 2 https://github.com/peterzen/goresolver 2 https://github.com/pingcap/tidb 2 https://github.com/multiversx/mx-chain-go 2 https://github.com/mutagen-io/mutagen 2 https://github.com/stripe/smokescreen 2 https://github.com/ntbosscher/gobase 2 https://github.com/projectdiscovery/nuclei 2 https://github.com/Netflix/security-bulletins 2 https://github.com/notaryproject/notation 2 https://github.com/russellhaering/goxmldsig 2 https://github.com/opencontainers/distribution-spec 2 https://github.com/sigstore/rekor 2