Go Package Vulnerabilities
All 1,261 Go modules with known CVEs, ranked by live CVE volume — 5,104 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 251.github.com/oxia-db/oxia4 CVEs
- 252.github.com/pion/dtls/v24 CVEs
- 253.github.com/projectcalico/calico4 CVEs
- 254.github.com/russellhaering/gosaml24 CVEs
- 255.github.com/shellhub-io/shellhub4 CVEs
- 256.github.com/sigstore/cosign/v24 CVEs
- 257.github.com/sigstore/gitsign4 CVEs
- 258.github.com/sigstore/rekor4 CVEs
- 259.github.com/smallstep/certificates4 CVEs
- 260.github.com/tendermint/tendermint4 CVEs
- 261.github.com/theupdateframework/go-tuf/v24 CVEs
- 262.github.com/tidwall/gjson4 CVEs
- 263.github.com/zalando/skipper4 CVEs
- 264.golang.org/x/net/http24 CVEs
- 265.gopkg.in/src-d/go-git.v44 CVEs
- 266.miniflux.app4 CVEs
- 267.vitess.io/vitess4 CVEs
- 268.github.com/0xJacky/nginx-ui3 CVEs
- 269.github.com/AlexxIT/go2rtc3 CVEs
- 270.github.com/apache/servicecomb-service-center3 CVEs
- 271.github.com/apache/thrift3 CVEs
- 272.github.com/apptainer/apptainer3 CVEs
- 273.github.com/argoproj/argo-events3 CVEs
- 274.github.com/artifacthub/hub3 CVEs
- 275.github.com/aws/aws-sdk-go3 CVEs
- 276.github.com/btcsuite/btcd3 CVEs
- 277.github.com/buger/jsonparser3 CVEs
- 278.github.com/cometbft/cometbft3 CVEs
- 279.github.com/containous/traefik3 CVEs
- 280.github.com/containous/traefik/v23 CVEs
- 281.github.com/crossplane/crossplane3 CVEs
- 282.github.com/ctfer-io/chall-manager3 CVEs
- 283.github.com/dadrus/heimdall3 CVEs
- 284.github.com/dapr/dapr3 CVEs
- 285.github.com/distribution/distribution/v33 CVEs
- 286.github.com/donknap/dpanel3 CVEs
- 287.github.com/dunglas/frankenphp3 CVEs
- 288.github.com/dutchcoders/transfer.sh3 CVEs
- 289.github.com/ElrondNetwork/elrond-go3 CVEs
- 290.github.com/envoyproxy/gateway3 CVEs
- 291.github.com/fleetdm/fleet3 CVEs
- 292.github.com/fluxcd/helm-controller3 CVEs
- 293.github.com/fluxcd/source-controller3 CVEs
- 294.github.com/flyteorg/flyteadmin3 CVEs
- 295.github.com/free5gc/smf3 CVEs
- 296.github.com/free5gc/udm3 CVEs
- 297.github.com/git-lfs/git-lfs/v33 CVEs
- 298.github.com/go-jose/go-jose/v33 CVEs
- 299.github.com/go-jose/go-jose/v43 CVEs
- 300.github.com/gomarkdown/markdown3 CVEs
Which Go packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →