coder-v2/coder
Remote development environments on your infrastructure
Security Advisories for coder-v2/coder in helm
Repackage
High
6 months ago
Coder vulnerable to privilege escalation could lead to a cross workspace compromise
go
github.com/coder/coder/v2
Repackage
Low
6 months ago
Coder accepts an APIKey beyond the linked OIDC expiry if there is no refresh token
go
github.com/coder/coder/v2
Repackage
Moderate
over 1 year ago
Coder vulnerable to post-auth URL redirection to untrusted site ('Open Redirect')
go
github.com/coder/coder/v2
Repackage
High
almost 2 years ago
Coder's OIDC authentication allows email with partially matching domain to register
go
github.com/coder/coder, github.com/coder/coder/v2