
github.com/stacklok/minder
go · Repository · Package
Security Advisories for github.com/stacklok/minder in go
Moderate
over 1 year ago
Minder affected by denial of service from maliciously configured Git repository
go
github.com/stacklok/minder
Moderate
over 1 year ago
Denial of service of Minder Server from maliciously crafted GitHub attestations
go
github.com/stacklok/minder
Moderate
over 1 year ago
Stacklok Minder vulnerable to denial of service from maliciously crafted templates
go
github.com/stacklok/minder
Moderate
over 1 year ago
Denial of service of Minder Server with attacker-controlled REST endpoint
go
github.com/stacklok/minder
High
over 1 year ago
Minder's GitHub Webhook Handler vulnerable to DoS from un-validated requests
go
github.com/stacklok/minder
High
over 1 year ago
`GetRepositoryByName`, `DeleteRepositoryByName` and `GetArtifactByName` allow access of arbitrary repositories in Minder by any authenticated user
go
github.com/stacklok/minder
Moderate
over 1 year ago
Minder trusts client-provided mapping from repo name to upstream ID
go
github.com/stacklok/minder