Go module
github.com/defenseunicorns/uds-cli
history
arrow_drop_downv0.5.2
Newer version availablewarning
Warning
We found errors while resolving dependencies that may result in an incomplete or inaccurate dependency graph.
Show details
- Errors found while resolving some dependencies. Please go to the Dependencies tab for more information.
Security Advisories
29
In the dependencies
Similar advisories
containerd allows RAPL to be accessible to a container
MODERATE·GHSA-7ww5-4wqc-m92c
Similar advisories
CIRCL's Kyber: timing side-channel (kyberslash2)
HIGH·GHSA-9763-4f94-gfch
Similar advisories
Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
9.8 CRITICAL·GHSA-449p-3h89-pw88
Similar advisories
Maliciously crafted Git server replies can cause DoS on go-git clients
7.5 HIGH·GHSA-mw99-9chc-xw7r
Similar advisories
stereoscope vulnerable to tar path traversal when processing OCI tar archives
5.3 MODERATE·GHSA-hpxr-w9w7-g4gv
Similar advisories
runc vulnerable to container breakout through process.cwd trickery and leaked fds
8.6 HIGH·GHSA-xr7r-f8xq-vfvv
Similar advisories
Classic builder cache poisoning
6.9 MODERATE·GHSA-xw73-rw38-6vjc
Path traversal in helm.sh/helm/v3
GO-2024-2554
Similar advisories
Helm dependency management path traversal
6.4 MODERATE·GHSA-v53g-5gjp-272r
Similar advisories
Helm's Missing YAML Content Leads To Panic
7.5 HIGH·GHSA-r53h-jv2g-vpx6
Similar advisories
Go JOSE vulnerable to Improper Handling of Highly Compressed Data (Data Amplification)
4.3 MODERATE·GHSA-c5q2-7r4c-mv6g
Similar advisories
net/http, x/net/http2: close connections when receiving too many headers
5.3 MODERATE·GHSA-4v7x-pqxf-cx7m
Similar advisories
Archiver Path Traversal vulnerability
6.1 MODERATE·GHSA-rhh4-rh7c-7r5v
Similar advisories
Cosign malicious attachments can cause system-wide denial of service
4.2 MODERATE·GHSA-88jx-383q-w4qc
Similar advisories
Cosign malicious artifacts can cause machine-wide DoS
4.2 MODERATE·GHSA-95pr-fxf5-86gv
Similar advisories
HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git Branches
9.8 CRITICAL·GHSA-q64h-39hv-4cf7
Similar advisories
Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
5.5 MODERATE·GHSA-m5vv-6r4h-3vj9
Similar advisories
go-retryablehttp can leak basic auth credentials to log files
6 MODERATE·GHSA-v6v8-xj6m-xwqh
Similar advisories
HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation
8.4 HIGH·GHSA-xfhp-jf8p-mh5w
Similar advisories
runc can be confused to create empty files/directories on the host
3.6 MODERATE·GHSA-jfvp-7x6p-h2pv
Similar advisories
OPA for Windows has an SMB force-authentication vulnerability
6.1 MODERATE·GHSA-c77r-fh37-x2px
Similar advisories
Similar advisories
Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto
9.1 CRITICAL·GHSA-v778-237x-gjrc
Similar advisories
Non-linear parsing of case-insensitive content in golang.org/x/net/html
HIGH·GHSA-w32m-9786-jp63
Similar advisories
go-git clients vulnerable to DoS via maliciously crafted Git server replies
7.5 HIGH·GHSA-r9px-m959-cxf4
Similar advisories
go-git has an Argument Injection via the URL field
9.8 CRITICAL·GHSA-v725-9546-7q7m
Helm shows secrets in clear text
MODERATE·GHSA-jw44-4f3j-q396
Dependents
This package has no known dependents.
Package metadata as of .
Links
- Origin
- Repo