Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

helm

coder-v2/coder-provisioner

helm

External provisioner daemon for Coder. This is an Enterprise feature; contact sales@coder.com.

View on github.com · View on artifacthub.io

Security Advisories for coder-v2/coder-provisioner in helm

Potential
High
6 months ago

Coder vulnerable to privilege escalation could lead to a cross workspace compromise GSA_kwCzR0hTQS1qNnhmLWp3cmotdjVxcM4ABLxK

go github.com/coder/coder/v2
Potential
Low
6 months ago

Coder accepts an APIKey beyond the linked OIDC expiry if there is no refresh token GSA_kwCzR0hTQS0zcnc5LXdtYzgtODk0OM4ABLiA

go github.com/coder/coder/v2
Potential
Moderate
over 1 year ago

Coder vulnerable to post-auth URL redirection to untrusted site ('Open Redirect') GSA_kwCzR0hTQS13Y3g5LWNjcGotaHgzY84ABAuW

go github.com/coder/coder/v2
Potential
High
almost 2 years ago

Coder's OIDC authentication allows email with partially matching domain to register GSA_kwCzR0hTQS03Y2MyLXI2NTgtN3hwZs4AA5wH

go github.com/coder/coder, github.com/coder/coder/v2

Filter by Severity

High 2 Moderate 1 Low 1