Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/coder/coder/v2

Ecosystem:
go
Package URL:
pkg:golang/github.com/coder/coder/v2
Total PRs:
14 Dependabot PRs
Latest PR:
about 2 months ago
Unique Repositories:
3 repositories
Unique Repos (30 days):
0 repositories
Security Advisories
Coder's OIDC authentication allows email with partially matching domain to register
GHSA-7cc2-r658-7xpf CVE-2024-27918 HIGH published over 1 year ago • updated 1 day ago
### Summary A vulnerability in Coder's OIDC authentication could allow an attacker to bypass the `CODER_OIDC_EMAIL_DOMAIN` verification and create ...
Coder vulnerable to privilege escalation could lead to a cross workspace compromise
GHSA-j6xf-jwrj-v5qp CVE-2025-58437 HIGH published 3 months ago • updated 1 day ago
## Summary Insecure session handling opened room for a privilege escalation scenario in which [prebuilt workspaces](https://coder.com/docs/admin/t...
Coder accepts an APIKey beyond the linked OIDC expiry if there is no refresh token
GHSA-3rw9-wmc8-8948 LOW published 3 months ago • updated 15 days ago
### Summary If users log in to Coder via OIDC, and the OpenID Identity Provider does not return a refresh token, then Coder may allow their web ses...
Coder vulnerable to post-auth URL redirection to untrusted site ('Open Redirect')
GHSA-wcx9-ccpj-hx3c MODERATE published about 1 year ago • updated 15 days ago
### Summary An issue on Coder's login page allows attackers to craft a Coder URL that when clicked by a logged in user could redirect them to a web...
Recent PRs (filtered by: Merged , Minor PRs )
RSS Feed Clear filter
chore(deps): bump github.com/coder/coder/v2 from 2.24.1 to 2.25.1

coder/terraform-provider-coderd #244

2.24.1 → 2.25.1 Minor PR
Merged 4 months ago
coder
chore(deps): bump github.com/coder/coder/v2 from 2.23.1 to 2.24.1

coder/terraform-provider-coderd #236

2.23.1 → 2.24.1 Minor PR
Merged 5 months ago
coder
Package Details
Name: github.com/coder/coder/v2
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/coder/coder/v2
JSON API: View JSON
Security Advisories

4

Active advisories
HIGH 2
MODERATE 1
LOW 1
View All golang Advisories
Package Information
Description:

Repository: https://github.com/coder/coder
Homepage: https://github.com/coder/coder
Latest Release: v2.23.0
6 months ago
Dependent Repos: 0
Dependent Packages: 4
Ranking: Top 10.5606% by dependent repos Top 8.9% by dependent pkgs
PR Status
Open 4 (28.6%)
Merged 4 (28.6%)
Closed 4 (28.6%)
PR Types
Minor 8 (57.1%)
Patch 4 (28.6%)