Go Package Vulnerabilities

All 1,262 Go modules with known CVEs, ranked by live CVE volume — 5,114 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 501.github.com/redhat-developer/gitops-operator2 CVEs
  2. 502.github.com/RobotsAndPencils/go-saml2 CVEs
  3. 503.github.com/rs/cors2 CVEs
  4. 504.github.com/sajari/docconv2 CVEs
  5. 505.github.com/shamaton/msgpack/v22 CVEs
  6. 506.github.com/sigstore/fulcio2 CVEs
  7. 507.github.com/sigstore/timestamp-authority/v22 CVEs
  8. 508.github.com/slackhq/nebula2 CVEs
  9. 509.github.com/snowflakedb/gosnowflake2 CVEs
  10. 510.github.com/stefanprodan/podinfo2 CVEs
  11. 511.github.com/stripe/smokescreen2 CVEs
  12. 512.github.com/stripe/stripe-cli2 CVEs
  13. 513.github.com/swaggo/http-swagger2 CVEs
  14. 514.github.com/sylabs/singularity/v42 CVEs
  15. 515.github.com/tharsis/evmos/v22 CVEs
  16. 516.github.com/tiagorlampert/CHAOS2 CVEs
  17. 517.github.com/tobychui/zoraxy2 CVEs
  18. 518.github.com/tomwright/dasel/v32 CVEs
  19. 519.github.com/unknwon/cae2 CVEs
  20. 520.github.com/u-root/u-root2 CVEs
  21. 521.github.com/vesoft-inc/nebula2 CVEs
  22. 522.github.com/woodpecker-ci/woodpecker2 CVEs
  23. 523.github.com/yokecd/yoke2 CVEs
  24. 524.github.com/zinclabs/zinc2 CVEs
  25. 525.github.com/zincsearch/zincsearch2 CVEs
  26. 526.golang.org/x/net/html2 CVEs
  27. 527.golang.org/x/sys2 CVEs
  28. 528.go.mongodb.org/mongo-driver2 CVEs
  29. 529.google.golang.org/protobuf2 CVEs
  30. 530.go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp2 CVEs
  31. 531.go.opentelemetry.io/otel/sdk2 CVEs
  32. 532.gopkg.in/square/go-jose.v12 CVEs
  33. 533.go.woodpecker-ci.org/woodpecker2 CVEs
  34. 534.go.woodpecker-ci.org/woodpecker/v22 CVEs
  35. 535.mellium.im/xmpp2 CVEs
  36. 536.open-cluster-management.io/ocm2 CVEs
  37. 537.sigs.k8s.io/secrets-store-csi-driver2 CVEs
  38. 538.Traefik2 CVEs
  39. 539.aahframe.work1 CVE
  40. 540.blitiri.com.ar/go/chasquid1 CVE
  41. 541.charm.land/wish/v21 CVE
  42. 542.code.cloudfoundry.org/archiver1 CVE
  43. 543.code.cloudfoundry.org/gorouter1 CVE
  44. 544.code.vegaprotocol.io/vega1 CVE
  45. 545.ehang.io/nps1 CVE
  46. 546.filippo.io/edwards255191 CVE
  47. 547.filippo.io/nistec1 CVE
  48. 548.github.com/1Panel-dev/1Panel/agent1 CVE
  49. 549.github.com/3scale-sre/marin3r1 CVE
  50. 550.github.com/abhinavxd/libredesk1 CVE

Which Go packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →