Go Package Vulnerabilities
All 1,260 Go modules with known CVEs, ranked by live CVE volume — 5,100 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 1.github.com/mattermost/mattermost-server248 CVEs
- 2.github.com/mattermost/mattermost/server/v8176 CVEs
- 3.github.com/mattermost/mattermost-server/v6175 CVEs
- 4.stdlib160 CVEs
- 5.github.com/mattermost/mattermost-server/v5152 CVEs
- 6.github.com/usememos/memos74 CVEs
- 7.github.com/grafana/grafana61 CVEs
- 8.github.com/hashicorp/vault55 CVEs
- 9.github.com/rancher/rancher54 CVEs
- 10.code.gitea.io/gitea52 CVEs
- 11.k8s.io/kubernetes50 CVEs
- 12.gogs.io/gogs49 CVEs
- 13.github.com/argoproj/argo-cd46 CVEs
- 14.github.com/argoproj/argo-cd/v246 CVEs
- 15.github.com/traefik/traefik/v237 CVEs
- 16.github.com/traefik/traefik36 CVEs
- 17.github.com/zitadel/zitadel36 CVEs
- 18.github.com/answerdev/answer34 CVEs
- 19.github.com/hashicorp/nomad34 CVEs
- 20.github.com/docker/docker33 CVEs
- 21.golang.org/x/net32 CVEs
- 22.github.com/cilium/cilium31 CVEs
- 23.github.com/filebrowser/filebrowser/v231 CVEs
- 24.github.com/hashicorp/consul31 CVEs
- 25.toolchain30 CVEs
- 26.github.com/siyuan-note/siyuan/kernel29 CVEs
- 27.github.com/traefik/traefik/v329 CVEs
- 28.golang.org/x/crypto28 CVEs
- 29.github.com/openbao/openbao27 CVEs
- 30.github.com/openfga/openfga26 CVEs
- 31.github.com/coder/coder23 CVEs
- 32.github.com/coder/coder/v223 CVEs
- 33.helm.sh/helm/v323 CVEs
- 34.github.com/ethereum/go-ethereum22 CVEs
- 35.github.com/filebrowser/filebrowser21 CVEs
- 36.github.com/goharbor/harbor21 CVEs
- 37.github.com/go-gitea/gitea20 CVEs
- 38.github.com/gotenberg/gotenberg/v820 CVEs
- 39.github.com/fleetdm/fleet/v419 CVEs
- 40.github.com/kyverno/kyverno19 CVEs
- 41.github.com/nats-io/nats-server/v219 CVEs
- 42.github.com/1Panel-dev/1Panel18 CVEs
- 43.github.com/moby/moby18 CVEs
- 44.github.com/containerd/containerd17 CVEs
- 45.github.com/opencontainers/runc17 CVEs
- 46.k8s.io/ingress-nginx17 CVEs
- 47.github.com/ollama/ollama16 CVEs
- 48.github.com/authzed/spicedb15 CVEs
- 49.github.com/containers/podman/v415 CVEs
- 50.github.com/coredns/coredns15 CVEs
Which Go packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →