Go Package Vulnerabilities

All 1,262 Go modules with known CVEs, ranked by live CVE volume — 5,123 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 651.github.com/compose-spec/compose-go/v21 CVE
  2. 652.github.com/concourse/dex1 CVE
  3. 653.github.com/consensys/gnark-crypto1 CVE
  4. 654.github.com/Consensys/gnark-crypto1 CVE
  5. 655.github.com/containerd/imgcrypt1 CVE
  6. 656.github.com/containernetworking/cni1 CVE
  7. 657.github.com/containers/common1 CVE
  8. 658.github.com/containers/image/v51 CVE
  9. 659.github.com/containers/psgo1 CVE
  10. 660.github.com/containers/storage1 CVE
  11. 661.github.com/containous/traefik/api1 CVE
  12. 662.github.com/containous/traefik/v2/pkg/api1 CVE
  13. 663.github.com/containrrr/shoutrrr1 CVE
  14. 664.github.com/contribsys/faktory1 CVE
  15. 665.github.com/controlplaneio-fluxcd/flux-operator1 CVE
  16. 666.github.com/corazawaf/coraza1 CVE
  17. 667.github.com/coreos/ignition1 CVE
  18. 668.github.com/coreos/ignition/v21 CVE
  19. 669.github.com/cortexlabs/cortex1 CVE
  20. 670.github.com/cosmos/cosmos-sdk1 CVE
  21. 671.github.com/crossplane/crossplane-runtime1 CVE
  22. 672.github.com/csaf-poc/csaf_distribution1 CVE
  23. 673.github.com/ctfer-io/chall-manager/deploy1 CVE
  24. 674.github.com/ctfer-io/chall-manager/sdk1 CVE
  25. 675.github.com/ctfer-io/fullchain1 CVE
  26. 676.github.com/dablelv/go-huge-util1 CVE
  27. 677.github.com/dapr/dashboard1 CVE
  28. 678.github.com/darklynx/request-baskets1 CVE
  29. 679.github.com/datacharmer/dbdeployer1 CVE
  30. 680.github.com/DatanoiseTV/tinyice1 CVE
  31. 681.github.com/ddev/ddev1 CVE
  32. 682.github.com/deislabs/oras1 CVE
  33. 683.github.com/deislabs/ratify1 CVE
  34. 684.github.com/deis/workflow-manager1 CVE
  35. 685.github.com/destinygg/chat1 CVE
  36. 686.github.com/devfile/registry-support/registry-library1 CVE
  37. 687.github.com/dgrijalva/jwt-go1 CVE
  38. 688.github.com/dgrijalva/jwt-go/v41 CVE
  39. 689.github.com/dhax/go-base1 CVE
  40. 690.github.com/dinever/golf1 CVE
  41. 691.github.com/disintegration/imaging1 CVE
  42. 692.github.com/docker/buildx1 CVE
  43. 693.github.com/docker/cli1 CVE
  44. 694.github.com/docker/compose1 CVE
  45. 695.github.com/docker/compose/v21 CVE
  46. 696.github.com/docker/docker-ce1 CVE
  47. 697.github.com/docker/model-runner1 CVE
  48. 698.github.com/docker/notary1 CVE
  49. 699.github.com/documize/community1 CVE
  50. 700.github.com/dotmesh-io/dotmesh1 CVE

Which Go packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →