Go module
github.com/depot/cli
history
arrow_drop_downv1.8.0
Newer version availableSecurity Advisories
28
In the dependencies
Similar advisories
HTTP/2 Stream Cancellation Attack
5.3 MODERATE·GHSA-qppj-fm5r-hxr3
gRPC-Go HTTP/2 Rapid Reset vulnerability
7.5 HIGH·GHSA-m425-mq94-257g
Similar advisories
containerd CRI stream server vulnerable to host memory exhaustion via terminal
5.7 MODERATE·GHSA-2qjp-425j-52j9
Similar advisories
OCI image importer memory exhaustion in github.com/containerd/containerd
5.5 MODERATE·GHSA-259w-8hf6-59c2
Similar advisories
Supplementary groups are not set up properly in github.com/containerd/containerd
5.3 MODERATE·GHSA-hmfx-3pcx-653p
Similar advisories
Docker Swarm encrypted overlay network may be unauthenticated
7.5 HIGH·GHSA-232p-vwff-86mp
Similar advisories
Docker Swarm encrypted overlay network traffic may be unencrypted
6.8 MODERATE·GHSA-33pg-m6jh-5237
Similar advisories
Docker Swarm encrypted overlay network with a single endpoint is unauthenticated
6.8 MODERATE·GHSA-6wrf-mxfj-pf5p
Similar advisories
Improper rendering of text nodes in golang.org/x/net/html
6.1 MODERATE·GHSA-2wrh-6pvc-2jm9
Similar advisories
HTTP/2 rapid reset can cause excessive work in net/http
7.5 HIGH·GHSA-4374-p667-p6c8
Similar advisories
Similar advisories
otelgrpc DoS vulnerability due to unbound cardinality metrics
7.5 HIGH·GHSA-8pgv-569h-w5rw
Similar advisories
Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
5.9 MODERATE·GHSA-45x7-px36-x8w8
Similar advisories
containerd allows RAPL to be accessible to a container
MODERATE·GHSA-7ww5-4wqc-m92c
Panic in github.com/moby/buildkit
GO-2024-2492
Similar advisories
BuildKit vulnerable to possible panic when incorrect parameters sent from frontend
5.3 MODERATE·GHSA-9p26-698r-w4hx
Similar advisories
BuildKit vulnerable to possible race condition with accessing subpaths from cache mounts
8.7 HIGH·GHSA-m3r6-h7wv-7xxv
Similar advisories
BuildKit vulnerable to possible host system access from mount stub cleaner
10 CRITICAL·GHSA-4v98-7qmw-rqr8
Similar advisories
Buildkit's interactive containers API does not validate entitlements check
9.8 CRITICAL·GHSA-wr6v-9f75-vh2g
Similar advisories
Classic builder cache poisoning
6.9 MODERATE·GHSA-xw73-rw38-6vjc
Similar advisories
Golang protojson.Unmarshal function infinite loop when unmarshaling certain forms of invalid JSON
7.5 MODERATE·GHSA-8r3f-844c-mc37
Similar advisories
net/http, x/net/http2: close connections when receiving too many headers
5.3 MODERATE·GHSA-4v7x-pqxf-cx7m
Similar advisories
Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto
9.1 CRITICAL·GHSA-v778-237x-gjrc
Similar advisories
Non-linear parsing of case-insensitive content in golang.org/x/net/html
HIGH·GHSA-w32m-9786-jp63
Buildkit credentials inlined to Git URLs could end up in provenance attestation
6.5 MODERATE·GHSA-gc89-7gcr-jxqc
distribution catalog API endpoint can lead to OOM via malicious user input
7.5 HIGH·GHSA-hqxw-f8mx-cpmw
/sys/devices/virtual/powercap accessible by default to containers
MODERATE·GHSA-jq35-85cj-fj4p
Moby's external DNS requests from 'internal' networks could lead to data exfiltration
5.9 MODERATE·GHSA-mq39-4gv4-mvpx
Dependents
This package has no known dependents.
Package metadata as of .
Projects
depot/cli
GitHub
🖥️ Depot CLI, build your Docker images in the cloud
call_split 6 forks
star 130 stars
Project metadata as of .