Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/stacklok/minder

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/stacklok/minder in go

Moderate
over 1 year ago

Minder affected by denial of service from maliciously configured Git repository GSA_kwCzR0hTQS1ocGNnLXhqcTUtZzY2Ns4AA9Jv

go github.com/stacklok/minder
Moderate
over 1 year ago

Denial of service of Minder Server from maliciously crafted GitHub attestations GSA_kwCzR0hTQS04Zm1qLTMzZ3ctZzdwd84AA8i8

go github.com/stacklok/minder
Moderate
over 1 year ago

Stacklok Minder vulnerable to denial of service from maliciously crafted templates GSA_kwCzR0hTQS1jcmdjLTI1ODMtcncyN84AA8WN

go github.com/stacklok/minder
Moderate
over 1 year ago

Denial of service of Minder Server with attacker-controlled REST endpoint GSA_kwCzR0hTQS1manc4LTNncDgtNGN2eM4AA8Kw

go github.com/stacklok/minder
High
over 1 year ago

Minder's GitHub Webhook Handler vulnerable to DoS from un-validated requests GSA_kwCzR0hTQS05YzV3LTlxM2YtM2h2N84AA70G

go github.com/stacklok/minder
Moderate
over 1 year ago

Minder GetRepositoryByName data leak GSA_kwCzR0hTQS1nZ3A1LTI4eDQteGNqOc4AA6wX

go github.com/stacklok/minder
High
over 1 year ago

`GetRepositoryByName`, `DeleteRepositoryByName` and `GetArtifactByName` allow access of arbitrary repositories in Minder by any authenticated user GSA_kwCzR0hTQS12NjI3LTY5djIteHgzN84AA5xb

go github.com/stacklok/minder
Moderate
over 1 year ago

Minder trusts client-provided mapping from repo name to upstream ID GSA_kwCzR0hTQS1xNmg4LTRqMnYtcGpnNM4AA5gv

go github.com/stacklok/minder

Filter by Severity

Moderate 6 High 2