Go Package Vulnerabilities

All 1,261 Go modules with known CVEs, ranked by live CVE volume — 5,110 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 301.github.com/googleapis/mcp-toolbox3 CVEs
  2. 302.github.com/go-skynet/LocalAI3 CVEs
  3. 303.github.com/gotenberg/gotenberg/v73 CVEs
  4. 304.github.com/go-vela/server3 CVEs
  5. 305.github.com/heketi/heketi3 CVEs
  6. 306.github.com/IceWhaleTech/CasaOS3 CVEs
  7. 307.github.com/imgproxy/imgproxy3 CVEs
  8. 308.github.com/imgproxy/imgproxy/v23 CVEs
  9. 309.github.com/imgproxy/imgproxy/v33 CVEs
  10. 310.github.com/inspektor-gadget/inspektor-gadget3 CVEs
  11. 311.github.com/ipfs/go-ipfs3 CVEs
  12. 312.github.com/ipld/go-ipld-prime3 CVEs
  13. 313.github.com/jackc/pgx3 CVEs
  14. 314.github.com/jackc/pgx/v43 CVEs
  15. 315.github.com/karmada-io/karmada3 CVEs
  16. 316.github.com/kata-containers/kata-containers3 CVEs
  17. 317.github.com/lestrrat-go/jwx3 CVEs
  18. 318.github.com/lestrrat-go/jwx/v23 CVEs
  19. 319.github.com/lf-edge/ekuiper/v23 CVEs
  20. 320.github.com/libp2p/go-libp2p3 CVEs
  21. 321.github.com/mattermost/mattermost-plugin-calls3 CVEs
  22. 322.github.com/mattermost/mattermost-plugin-jira3 CVEs
  23. 323.github.com/mattermost/mattermost-plugin-msteams3 CVEs
  24. 324.github.com/miekg/dns3 CVEs
  25. 325.github.com/modelcontextprotocol/go-sdk3 CVEs
  26. 326.github.com/monetr/monetr3 CVEs
  27. 327.github.com/nats-io/jwt3 CVEs
  28. 328.github.com/nats-io/nats-streaming-server3 CVEs
  29. 329.github.com/nektos/act3 CVEs
  30. 330.github.com/notaryproject/notation3 CVEs
  31. 331.github.com/openclaw/crabbox3 CVEs
  32. 332.github.com/openshift/hive3 CVEs
  33. 333.github.com/openshift/origin3 CVEs
  34. 334.github.com/ory/hydra3 CVEs
  35. 335.github.com/phachon/mm-wiki3 CVEs
  36. 336.github.com/pingcap/tidb3 CVEs
  37. 337.github.com/plentico/plenti3 CVEs
  38. 338.github.com/pydio/cells3 CVEs
  39. 339.github.com/pydio/cells/v43 CVEs
  40. 340.github.com/QuantumNous/new-api3 CVEs
  41. 341.github.com/quic-go/webtransport-go3 CVEs
  42. 342.github.com/rancher/fleet3 CVEs
  43. 343.github.com/runatlantis/atlantis3 CVEs
  44. 344.github.com/SpectoLabs/hoverfly3 CVEs
  45. 345.github.com/square/go-jose3 CVEs
  46. 346.github.com/syncthing/syncthing3 CVEs
  47. 347.github.com/Tencent/WeKnora3 CVEs
  48. 348.github.com/tharsis/evmos3 CVEs
  49. 349.github.com/tilt-dev/tilt3 CVEs
  50. 350.github.com/ubuntu/authd3 CVEs

Which Go packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →