Go Package Vulnerabilities

All 1,262 Go modules with known CVEs, ranked by live CVE volume — 5,114 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 551.github.com/actiontech/sqle1 CVE
  2. 552.github.com/AdguardTeam/dnsproxy1 CVE
  3. 553.github.com/agnivade/easy-scrypt1 CVE
  4. 554.github.com/aiven/aiven-operator1 CVE
  5. 555.github.com/albertito/chasquid1 CVE
  6. 556.github.com/alexanderzobnin/grafana-zabbix1 CVE
  7. 557.github.com/altcha-org/altcha-lib-go1 CVE
  8. 558.github.com/anchore/grype1 CVE
  9. 559.github.com/anchore/stereoscope1 CVE
  10. 560.github.com/anchore/syft1 CVE
  11. 561.github.com/AndrewBurian/powermux1 CVE
  12. 562.github.com/Anipaleja/nginx-defender1 CVE
  13. 563.github.com/antchfx/xmlquery1 CVE
  14. 564.github.com/antchfx/xpath1 CVE
  15. 565.github.com/apache/age/drivers/golang1 CVE
  16. 566.github.com/apache/skywalking-mcp1 CVE
  17. 567.github.com/apache/solr-operator1 CVE
  18. 568.github.com/appc/docker2aci1 CVE
  19. 569.github.com/appleboy/gorush1 CVE
  20. 570.github.com/aquasecurity/trivy1 CVE
  21. 571.github.com/argoproj/argo-cd/v2/server1 CVE
  22. 572.github.com/arkmq-org/activemq-artemis-operator1 CVE
  23. 573.github.com/artdarek/go-unzip1 CVE
  24. 574.github.com/autobrr/qui1 CVE
  25. 575.github.com/aws/amazon-cloudwatch-agent1 CVE
  26. 576.github.com/aws/amazon-ecs-agent1 CVE
  27. 577.github.com/aws/amazon-s3-encryption-client-go1 CVE
  28. 578.github.com/aws/amazon-s3-encryption-client-go/v31 CVE
  29. 579.github.com/aws/amazon-s3-encryption-client-go/v41 CVE
  30. 580.github.com/aws/aws-advanced-go-wrapper/auth-helpers1 CVE
  31. 581.github.com/aws/aws-advanced-go-wrapper/aws-secrets-manager1 CVE
  32. 582.github.com/aws/aws-advanced-go-wrapper/awssql/v21 CVE
  33. 583.github.com/aws/aws-advanced-go-wrapper/custom-endpoint1 CVE
  34. 584.github.com/aws/aws-advanced-go-wrapper/federated-auth1 CVE
  35. 585.github.com/aws/aws-advanced-go-wrapper/iam1 CVE
  36. 586.github.com/aws/aws-advanced-go-wrapper/mysql-driver1 CVE
  37. 587.github.com/aws/aws-advanced-go-wrapper/okta1 CVE
  38. 588.github.com/aws/aws-advanced-go-wrapper/otlp1 CVE
  39. 589.github.com/aws/aws-advanced-go-wrapper/pgx-driver1 CVE
  40. 590.github.com/aws/aws-advanced-go-wrapper/xray1 CVE
  41. 591.github.com/awslabs/aws-alb-route-directive-adapter-for-istio1 CVE
  42. 592.github.com/Azure/aad-pod-identity1 CVE
  43. 593.github.com/Azure/azure-sdk-for-go/sdk/azidentity1 CVE
  44. 594.github.com/Azure/go-ntlmssp1 CVE
  45. 595.github.com/Azure/secrets-store-csi-driver-provider-azure1 CVE
  46. 596.github.com/b3log/wide1 CVE
  47. 597.github.com/bazelbuild/intellij1 CVE
  48. 598.github.com/benc-uk/kubeview1 CVE
  49. 599.github.com/biscuit-auth/biscuit-go1 CVE
  50. 600.github.com/BishopFox/sliver1 CVE

Which Go packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →