Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/cli/cli/v2

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/cli/cli/v2 in go

Moderate
8 months ago

`gh attestation verify` returns incorrect exit code during verification if no attestations are present GSA_kwCzR0hTQS1mZ3c0LXY5ODMtbWdwOM4ABEfl

go github.com/cli/cli/v2
Moderate
10 months ago

Downloading malicious GitHub Actions workflow artifact results in path traversal vulnerability GSA_kwCzR0hTQS0ybTloLXI1N2ctNDVwas4ABCDS

go github.com/cli/cli, github.com/cli/cli/v2
Moderate
10 months ago

Recursive repository cloning can leak authentication tokens to non-GitHub submodule hosts GSA_kwCzR0hTQS1qd2NtLTlnMzktcG1jd84ABB4c

go github.com/cli/cli/v2
High
11 months ago

Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer GSA_kwCzR0hTQS1wMmgyLTN2ZzktNHA4N84ABBW1

go github.com/cli/cli/v2

Filter by Severity

Moderate 3 High 1