Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/docker/docker

Ecosystem:
go
Package URL:
pkg:golang/github.com/docker/docker
Total PRs:
5,468 Dependabot PRs
Latest PR:
23 days ago
Unique Repositories:
1,823 repositories
Unique Repos (30 days):
2 repositories
Security Advisories
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
GHSA-vp62-88p7-qqf5 CVE-2026-41568 MODERATE published 23 days ago • updated 11 days ago
## Summary A race condition during `docker cp` mount setup allows a malicious container to create empty files or directories at arbitrary absolute...
Privilege Escalation in Docker
GHSA-wxj3-qwv4-cvfm CVE-2014-3499 HIGH published over 4 years ago • updated 7 days ago
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecifi...
Path Traversal in Docker
GHSA-vj3f-3286-r4pf CVE-2014-9356 MODERATE published about 5 years ago • updated 7 days ago
Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism...
Moby (Docker Engine) is vulnerable to Ambiguous OCI manifest parsing
GHSA-xmmx-7jpf-fx42 MODERATE published about 2 years ago • updated about 1 hour ago
### Impact In the OCI Distribution Specification version 1.0.0 and prior and in the OCI Image Specification version 1.0.1 and prior, manifest and i...
Moby (Docker Engine) started with non-empty inheritable Linux process capabilities
GHSA-2mm7-x5h6-5pvq CVE-2022-24769 MODERATE published about 2 years ago • updated about 18 hours ago
### Impact A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities...
View all 33 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
chore: bump the engine group across 2 directories with 66 updates

dagger/dagger #12894

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 2 months ago 2 comments
dagger
fix(deps): bump the external group across 1 directory with 25 updates

opentdf/platform #3202

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 3 months ago 7 comments
opentdf
chore(deps): bump the go_modules group across 12 directories with 5 updates

gnolang/gno #5316

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Open 3 months ago 2 comments
gnolang
chore: bump the engine group across 2 directories with 62 updates

dagger/dagger #12017

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 3 months ago 1 comment
dagger
chore: bump the engine group across 2 directories with 61 updates

sipsma/dagger #1247

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 3 months ago 1 comment
sipsma
chore: bump the engine group across 2 directories with 54 updates

dagger/dagger #11987

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 3 months ago 2 comments
dagger
chore: bump the engine group across 2 directories with 48 updates

dagger/dagger #11969

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 3 months ago 1 comment
dagger
build(deps): bump github.com/docker/docker from 25.0.6+incompatible to 25.0.13+incompatible

pcanilho/vcluster-argocd-exporter #13

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Closed 3 months ago 1 comment
pcanilho
chore: bump the engine group across 2 directories with 58 updates

sipsma/dagger #1233

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 3 months ago 1 comment
sipsma
deps(go): bump the go-dependencies group across 1 directory with 15 updates

llm-d/llm-d-kv-cache #361

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 4 months ago 2 comments
llm-d
chore: bump the engine group across 2 directories with 56 updates

dagger/dagger #11895

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 4 months ago 2 comments
dagger
fix(deps): bump the external group across 1 directory with 23 updates

opentdf/platform #3094

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 4 months ago 5 comments
opentdf
Bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

BlackbirdWorks/Gopherstack #45

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 4 months ago 1 comment
BlackbirdWorks
fix(deps): bump the external group across 1 directory with 26 updates

opentdf/platform #3066

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 4 months ago 9 comments
opentdf
chore: bump the engine group across 2 directories with 52 updates

sipsma/dagger #1232

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 4 months ago 3 comments
sipsma
fix(deps): bump the external group across 1 directory with 21 updates

opentdf/platform #3038

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 4 months ago 1 comment
opentdf
chore(dependabot-go): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

pgvillage-tools/dbtwool #24

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 4 months ago 2 comments
pgvillage-tools
chore: bump the engine group across 2 directories with 50 updates

sipsma/dagger #1226

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 1 comment
sipsma
chore: bump the engine group across 2 directories with 48 updates

sipsma/dagger #1220

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 1 comment
sipsma
chore: bump the engine group across 2 directories with 47 updates

sipsma/dagger #1216

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 2 comments
sipsma
chore: bump the engine group across 2 directories with 48 updates

sipsma/dagger #1215

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 1 comment
sipsma
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

hatchet-dev/hatchet #2786

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 5 months ago 1 comment
hatchet-dev
chore(deps): Bump the go_modules group across 1 directory with 2 updates

devantler-tech/ksail #1702

28.3.1+incompatible → 28.3.3+incompatible Patch PR
Open 5 months ago 1 comment
devantler-tech
Bump the go-minor group across 1 directory with 15 updates

Nuvix-Tech/cli #23

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 1 comment
Nuvix-Tech
Bump the docker group across 1 directory with 5 updates

dependabot/cli #555

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 2 comments
dependabot
build(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

goauthentik/platform #554

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 1 comment
goauthentik
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/vearch

testcontainers/testcontainers-go #3536

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 2 comments
testcontainers
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/opensearch

testcontainers/testcontainers-go #3530

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 5 months ago 3 comments
testcontainers
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/ollama

testcontainers/testcontainers-go #3529

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 2 comments
testcontainers
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/localstack

testcontainers/testcontainers-go #3528

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 5 months ago 3 comments
testcontainers
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/k6

testcontainers/testcontainers-go #3527

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 3 comments
testcontainers
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/etcd

testcontainers/testcontainers-go #3525

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 3 comments
testcontainers
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /modules/dockermcpgateway

testcontainers/testcontainers-go #3524

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 2 comments
testcontainers
chore(deps): bump the all-dependencies group across 1 directory with 11 updates

tensorchord/envd #2074

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 5 months ago 2 comments
tensorchord
chore: bump the engine group across 2 directories with 47 updates

sipsma/dagger #1201

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 5 months ago 1 comment
sipsma
Bump the docker group across 1 directory with 4 updates

dependabot/cli #553

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 1 comment
dependabot
Bump the go_modules group across 31 directories with 13 updates

naywint3/gitpod #2

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Open 6 months ago 1 comment
naywint3
build(deps): Bump the minor-updates group across 1 directory with 4 updates

ingka-group/echoprobe #54

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 1 comment
ingka-group
chore(deps): bump the go_modules group across 2 directories with 3 updates

gnolang/gno #4982

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Open 6 months ago 5 comments
gnolang
chore: bump the engine group across 2 directories with 42 updates

shykes/dagger #464

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 6 months ago 1 comment
shykes
Bump the go-minor group across 1 directory with 11 updates

Nuvix-Tech/cli #19

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 6 months ago 2 comments
Nuvix-Tech
chore(deps): bump the go_modules group across 5 directories with 9 updates

liubog2008/tidb-operator #33

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Closed 6 months ago 1 comment
liubog2008
Bump the go-minor group across 1 directory with 10 updates

Nuvix-Tech/cli #18

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 2 comments
Nuvix-Tech
chore(deps): bump the go-dependencies group across 1 directory with 2 updates

ethpandaops/brakebear #28

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 1 comment
ethpandaops
chore(deps): bump the engine group across 2 directories with 39 updates

nludd25/dagger #9

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 6 months ago 1 comment
nludd25
chore: bump the engine group across 2 directories with 39 updates

sipsma/dagger #1187

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 2 comments
sipsma
chore(deps): bump the go-deps group across 1 directory with 19 updates

aws/karpenter-provider-aws #8753

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 6 months ago 3 comments
aws
chore(deps): bump the go group across 1 directory with 31 updates

pomerium/pomerium #5969

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 5 comments
pomerium
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

microcks/microcks-cli #221

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open 6 months ago 3 comments
microcks
chore(deps): bump the go group with 28 updates

pomerium/pomerium #5952

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed 6 months ago 1 comment
pomerium
Package Details
Name: github.com/docker/docker
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/docker/docker
JSON API: View JSON
Security Advisories

33

Active advisories
CRITICAL 2
HIGH 10
MODERATE 18
LOW 3
View All golang Advisories
Package Information
Description:

Repository: https://github.com/docker/docker
Homepage: https://github.com/docker/docker
Latest Release: v28.2.2+incompatible
about 1 year ago
Dependent Repos: 40,103
Dependent Packages: 16,935
Ranking: Top 0.0289% by dependent repos Top 0.0137% by dependent pkgs
PR Status
Open 2,557 (46.8%)
Merged 824 (15.1%)
Closed 1,693 (31.0%)
PR Types
Major 2,064 (37.7%)
Minor 2,025 (37.0%)
Patch 983 (18.0%)