kube-tarian sigrun issues

kube-tarian / sigrun

Sign your artifacts, source code or container images using Sigstore tools, Save the Signatures you want to use, and Validate & Control the deployments to allow only the known Sources based on Signatures, Maintainers & other payloads automatically.

https://sigrun.dev

Apache License 2.0

12 stars 3 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

CVE-2024-51744 (Low) detected in github.com/docker/distribution-v2.7.1, github.com/Form3tech-oss/jwt-go-v3.2.3+incompatible

#155 mend-bolt-for-github[bot] opened 22 hours ago
0
CVE-2024-47534 (Low) detected in github.com/theupdateframework/go-tuf-v0.1.0

#154 mend-bolt-for-github[bot] opened 1 month ago
0
CVE-2024-6104 (Medium) detected in github.com/hashiCorp/go-retryablehttp-v0.7.0

#153 mend-bolt-for-github[bot] opened 3 months ago
0
CVE-2024-41110 (Critical) detected in github.com/Docker/Docker-v20.10.7+incompatible - autoclosed

#152 mend-bolt-for-github[bot] closed 1 month ago
1
CVE-2024-28180 (Medium) detected in github.com/docker/distribution-v2.7.1

#151 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2024-24557 (Medium) detected in github.com/Docker/Docker-v20.10.7+incompatible - autoclosed

#150 mend-bolt-for-github[bot] closed 1 month ago
3
CVE-2024-24786 (High) detected in github.com/protocolbuffers/protobuf-go-v1.27.1

#149 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2024-23653 (Critical) detected in github.com/docker/Cli-v20.10.7+incompatible

#148 mend-bolt-for-github[bot] opened 6 months ago
0
WS-2023-0431 (Medium) detected in github.com/docker/distribution-v2.7.1

#147 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-44487 (High) detected in multiple libraries

#146 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-49569 (Critical) detected in github.com/go-git/go-git-v5.2.0

#145 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-49568 (High) detected in github.com/go-git/go-git-v5.2.0

#144 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-2253 (Medium) detected in github.com/docker/Cli-v20.10.7+incompatible, github.com/docker/distribution-v2.7.1

#143 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-46737 (Low) detected in github.com/sigstore/cosign-v1.0.1

#142 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-3978 (Medium) detected in github.com/golang/net-v0.1.0

#141 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2023-45288 (High) detected in github.com/golang/net-v0.1.0

#140 mend-bolt-for-github[bot] opened 6 months ago
0
WS-2022-0305 (Critical) detected in github.com/theupdateframework/go-tuf-v0.1.0

#139 mend-bolt-for-github[bot] opened 6 months ago
0
CVE-2021-4235 (Medium) detected in github.com/docker/distribution-v2.7.1

#138 mend-bolt-for-github[bot] opened 7 months ago
0
CVE-2023-48795 (Medium) detected in github.com/golang/crypto-v0.1.0

#137 mend-bolt-for-github[bot] opened 8 months ago
0
CVE-2022-32149 (High) detected in github.com/golang/text-v0.3.6

#136 mend-bolt-for-github[bot] opened 10 months ago
0
CVE-2023-39325 (High) detected in github.com/golang/net-v0.1.0

#135 mend-bolt-for-github[bot] opened 11 months ago
0
CVE-2022-28948 (High) detected in github.com/mongodb/mongo-go-driver-v1.6.0

#134 mend-bolt-for-github[bot] opened 11 months ago
0
CVE-2022-29526 (Medium) detected in github.com/docker/Cli-v20.10.7+incompatible, github.com/mongodb/mongo-go-driver-v1.6.0

#133 mend-bolt-for-github[bot] opened 11 months ago
0
CVE-2022-36109 (Medium) detected in github.com/Docker/Docker-v20.10.7+incompatible - autoclosed

#132 mend-bolt-for-github[bot] closed 1 month ago
1
CVE-2022-36056 (Medium) detected in github.com/sigstore/cosign-v1.0.1

#131 mend-bolt-for-github[bot] opened 11 months ago
0
CVE-2021-41087 (Medium) detected in github.com/in-toto/in-toto-golang-v0.2.1-0.20210627200632-886210ae2ab9

#130 mend-bolt-for-github[bot] opened 11 months ago
0
CVE-2022-41721 (High) detected in github.com/golang/net-v0.1.0

#129 mend-bolt-for-github[bot] opened 1 year ago
0
Bump github.com/sigstore/rekor from 0.3.0 to 1.2.0

#128 dependabot[bot] opened 1 year ago
0
Bump github.com/docker/distribution from 2.7.1+incompatible to 2.8.2+incompatible

#127 dependabot[bot] opened 1 year ago
0
Bump github.com/sigstore/rekor from 0.3.0 to 1.1.1

#126 dependabot[bot] closed 1 year ago
1
feat: reviewpad onboarding

#125 reviewpad[bot] closed 1 year ago
1
Bump github.com/sigstore/cosign from 1.0.1 to 1.12.0

#124 dependabot[bot] closed 1 year ago
2
Bump github.com/sigstore/cosign from 1.0.1 to 1.10.1

#123 dependabot[bot] closed 2 years ago
1
Bump github.com/docker/distribution from 2.7.1+incompatible to 2.8.0+incompatible

#122 dependabot[bot] closed 2 years ago
2
CVE-2020-16251 (High) detected in github.com/hashicorp/vault/api-v1.1.1

#120 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2022-29173 (High) detected in github.com/theupdateframework/go-tuf-v0.1.0

#119 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2018-16875 (High) detected in github.com/docker/docker-v20.10.7

#118 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2020-8559 (Medium) detected in github.com/docker/cli-v20.10.7

#117 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2022-27191 (High) detected in multiple libraries

#116 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2022-27536 (High) detected in github.com/docker/docker-v20.10.7

#115 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2020-15106 (Medium) detected in github.com/docker/docker-v20.10.7

#114 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2021-30465 (High) detected in github.com/docker/docker-v20.10.7

#113 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2021-41089 (Medium) detected in github.com/docker/docker-v20.10.7

#112 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2020-8565 (Medium) detected in github.com/docker/cli-v20.10.7

#111 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2021-43565 (High) detected in multiple libraries

#110 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2021-44716 (High) detected in multiple libraries

#109 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2021-41103 (High) detected in github.com/docker/docker-v20.10.7

#108 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2020-15257 (Medium) detected in github.com/docker/docker-v20.10.7

#107 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2020-15112 (Medium) detected in github.com/docker/docker-v20.10.7

#106 mend-bolt-for-github[bot] closed 2 years ago
1
CVE-2020-15113 (High) detected in github.com/docker/docker-v20.10.7

#105 mend-bolt-for-github[bot] closed 2 years ago
1