Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/docker/docker

Ecosystem:
go
Package URL:
pkg:golang/github.com/docker/docker
Total PRs:
5,287 Dependabot PRs
Latest PR:
1 day ago
Unique Repositories:
1,748 repositories
Unique Repos (30 days):
32 repositories
Security Advisories
Moby (Docker Engine) started with non-empty inheritable Linux process capabilities
GHSA-2mm7-x5h6-5pvq CVE-2022-24769 MODERATE published over 1 year ago • updated 2 days ago
### Impact A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities...
Moby firewalld reload makes published container ports accessible from remote hosts
GHSA-x4rx-4gw3-53p4 CVE-2025-54388 MODERATE published 5 months ago • updated about 6 hours ago
Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various o...
Arbitrary Code Execution
GHSA-997c-fj8j-rq5h CVE-2014-9357 HIGH published almost 4 years ago • updated about 1 month ago
Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted (1) image or (2) build in a Dockerfile in an LZMA...
Moby Docker cp broken with debian containers
GHSA-v2cv-wwxq-qq97 CVE-2019-14271 CRITICAL published over 3 years ago • updated 29 days ago
In Docker 19.03.x before 19.03.1 linked against the GNU C Library (aka glibc), code injection can occur when the nsswitch facility dynamically load...
Privilege Escalation in Docker
GHSA-wxj3-qwv4-cvfm CVE-2014-3499 HIGH published almost 4 years ago • updated 24 days ago
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecifi...
View all 29 advisories
Recent PRs
RSS Feed
chore(deps): bump the docker-modules group across 21 directories with 3 updates

gofiber/storage #2168

28.2.2+incompatible → 28.5.2+incompatible Minor PR
Open about 1 month ago 3 comments
gofiber
chore(deps): bump the docker-modules group across 23 directories with 3 updates

gofiber/storage #2020

28.2.2+incompatible → 28.5.2+incompatible Minor PR
Open about 1 month ago 2 comments
gofiber
chore(deps): bump github.com/docker/docker from 28.2.2+incompatible to 28.3.3+incompatible

go-shiori/shiori #1168

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Open about 1 month ago 1 comment
go-shiori
chore(deps): bump the go_modules group across 1 directory with 10 updates

spring-financial-group/jx-updatebot #25

27.3.1+incompatible → 28.0.0+incompatible Major PR
Closed about 1 month ago 1 comment
spring-financial-group
build(deps): bump the go_modules group across 1 directory with 6 updates

KunalSin9h/meltcd #122

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Open about 1 month ago 2 comments
KunalSin9h
Bump the go_modules group across 2 directories with 9 updates

q1blue/SuperCoder #3

26.1.4+incompatible → 28.0.0+incompatible Major PR
Open about 1 month ago 2 comments
q1blue
chore(deps): bump the go_modules group across 18 directories with 13 updates

Ayie99969/sanguine #6

20.10.23+incompatible → 25.0.13+incompatible Major PR
Closed about 1 month ago 1 comment
Ayie99969
Bump the go_modules group across 2 directories with 5 updates

dwydler/zoraxy #8

27.0.0+incompatible → 28.0.0+incompatible Major PR
Closed about 1 month ago 1 comment
dwydler
dependabot(gomod): bump github.com/docker/docker from 27.5.1+incompatible to 28.5.2+incompatible

succinctlabs/optimism #311

27.5.1+incompatible → 28.5.2+incompatible Major PR
Open about 1 month ago 1 comment
succinctlabs
Bump the go-minor group across 1 directory with 7 updates

Nuvix-Tech/cli #13

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed about 1 month ago 2 comments
Nuvix-Tech
build(deps): Bump the all-go group across 5 directories with 7 updates

evstack/ev-node #2854

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 1 month ago 3 comments
evstack
Bump github.com/docker/docker from 24.0.2+incompatible to 28.5.2+incompatible in /extension/observer/dockerobserver

gouthamve/opentelemetry-collector-contrib #22807

24.0.2+incompatible → 28.5.2+incompatible Major PR
Open about 1 month ago 1 comment
gouthamve
Bump github.com/docker/docker from 24.0.2+incompatible to 28.5.2+incompatible in /extension/observer/dockerobserver

mwear/opentelemetry-collector-contrib #21350

24.0.2+incompatible → 28.5.2+incompatible Major PR
Closed about 1 month ago 3 comments
mwear
Bump github.com/docker/docker from 24.0.2+incompatible to 28.5.2+incompatible in /receiver/dockerstatsreceiver

mwear/opentelemetry-collector-contrib #21246

24.0.2+incompatible → 28.5.2+incompatible Major PR
Closed about 1 month ago 3 comments
mwear
chore: bump the engine group across 2 directories with 45 updates

TomChv/dagger #506

28.4.0+incompatible → 28.5.2+incompatible Minor PR
Open about 1 month ago 1 comment
TomChv
Bump github.com/docker/docker from 24.0.0+incompatible to 25.0.13+incompatible in the go_modules group across 1 directory

Sentry-Script/buildpacks #2

24.0.0+incompatible → 25.0.13+incompatible Major PR
Open about 1 month ago 1 comment
Sentry-Script
Bump github.com/docker/docker from 27.3.1+incompatible to 28.0.0+incompatible in /test in the go_modules group across 1 directory

Sentry-Script/sing-box #1

27.3.1+incompatible → 28.0.0+incompatible Major PR
Open about 1 month ago 1 comment
Sentry-Script
Bump the root-deps group with 8 updates

google/go-containerregistry #2154

28.2.2+incompatible → 28.5.2+incompatible Minor PR
Open about 1 month ago 4 comments
google
chore(deps): bump the go group across 1 directory with 19 updates

envoyproxy/ai-gateway #1534

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 1 month ago 1 comment
envoyproxy
Bump the go-minor group across 1 directory with 3 updates

Nuvix-Tech/cli #11

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed about 1 month ago 2 comments
Nuvix-Tech
Bump the go_modules group across 2 directories with 19 updates

JohnMatthiasWabwire/zadig #2

23.0.1+incompatible → 25.0.13+incompatible Major PR
Closed about 2 months ago 1 comment
JohnMatthiasWabwire
Bump github.com/docker/docker from 24.0.7+incompatible to 28.5.2+incompatible in /internal/metadataproviders

pcwiese/opentelemetry-collector-contrib #31007

24.0.7+incompatible → 28.5.2+incompatible Major PR
Open about 2 months ago 3 comments
pcwiese
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in the go-dependencies group

ethpandaops/brakebear #25

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed about 2 months ago 1 comment
ethpandaops
build(deps): bump the go-dependencies group with 5 updates

buildpacks/pack #2463

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed about 2 months ago 1 comment
buildpacks
Bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

effective-security/gogentic #149

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed about 2 months ago 1 comment
effective-security
Bump the golang-dependencies group across 2 directories with 3 updates

ls1intum/hades #318

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 2 comments
ls1intum
chore(deps): bump the dependencies group across 1 directory with 6 updates

openfga/openfga #2798

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 2 comments
openfga
build(deps): bump the dependencies group in /systemtest with 5 updates

elastic/apm-server #19529

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 2 comments
elastic
chore: bump the golang group across 1 directory with 12 updates

AndiDog/skaffold #53

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
AndiDog
Bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

teran/go-docker-testsuite #152

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
teran
Bump github.com/docker/docker from 24.0.7+incompatible to 28.5.2+incompatible in /internal/metadataproviders

philchia/opentelemetry-collector-contrib #22607

24.0.7+incompatible → 28.5.2+incompatible Major PR
Open about 2 months ago 3 comments
philchia
chore(deps): Bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible in /test/docker-e2e

celestiaorg/celestia-app #6164

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
celestiaorg
Bump github.com/docker/docker from 28.5.0+incompatible to 28.5.2+incompatible in /src/main/go

benizzio/open-asset-allocator #178

28.5.0+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
benizzio
chore: bump the engine group across 2 directories with 25 updates

sipsma/dagger #1166

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
sipsma
chore(deps): bump the dependencies group in /bi with 7 updates

batteries-included/batteries-included #2821

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
batteries-included
Bump github.com/docker/docker from 20.10.11+incompatible to 28.5.2+incompatible in /receiver/dockerstatsreceiver

manang-splunk/opentelemetry-collector-contrib #3149

20.10.11+incompatible → 28.5.2+incompatible Major PR
Open about 2 months ago 1 comment
manang-splunk
build(deps): Bump the all-go-mod-patch-and-minor group across 1 directory with 4 updates

mesosphere/dynamic-credential-provider #442

28.5.0+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
mesosphere
deps(deps): bump the go-dependencies group with 3 updates

avivsinai/jenkins-cli #11

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
avivsinai
deps(go): bump github.com/docker/docker from 28.4.0+incompatible to 28.5.2+incompatible

rewardenv/reward #192

28.4.0+incompatible → 28.5.2+incompatible Minor PR
Closed about 2 months ago 1 comment
rewardenv
build(deps): bump the dependencies group across 1 directory with 8 updates

SoulPancake/mongopenfga #22

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
SoulPancake
Bump the go-modules group across 1 directory with 9 updates

picatz/dynabuf #47

28.5.0+incompatible → 28.5.2+incompatible Patch PR
Closed about 2 months ago 2 comments
picatz
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

Sanix-Darker/git-ci #4

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 1 comment
Sanix-Darker
deps: bump the production-dependencies group across 1 directory with 29 updates

pitabwire/matrix #311

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 3 comments
pitabwire
chore(deps): bump the minor group across 1 directory with 5 updates

containifyci/engine-ci #310

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Open about 2 months ago 24 comments
containifyci
chore: bump the engine group across 2 directories with 22 updates

dagger/dagger #11378

28.5.1+incompatible → 28.5.2+incompatible Patch PR
Closed about 2 months ago 1 comment
dagger
chore(deps): bump the go-deps group with 5 updates

ahouab/Karpenter #52

28.4.0+incompatible → 28.5.2+incompatible Minor PR
Closed about 2 months ago 1 comment
ahouab
build(deps): bump the moby group with 2 updates

apptainer/apptainer #3208

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed about 2 months ago 2 comments
apptainer
build(deps): Bump the go_modules group across 2 directories with 9 updates

Hawthorne001/cometbft #40

24.0.7+incompatible → 25.0.13+incompatible Major PR
Open about 2 months ago 2 comments
Hawthorne001
Bump the go_modules group across 1 directory with 2 updates

devfile/registry-operator #111

25.0.6+incompatible → 25.0.13+incompatible Patch PR
Open about 2 months ago 3 comments
devfile
chore(deps): bump the go_modules group across 1 directory with 3 updates

openfort-xyz/erpc #5

27.1.1+incompatible → 28.0.0+incompatible Major PR
Open about 2 months ago 1 comment
openfort-xyz
Package Details
Name: github.com/docker/docker
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/docker/docker
JSON API: View JSON
Security Advisories

29

Active advisories
CRITICAL 2
HIGH 8
MODERATE 16
LOW 3
View All golang Advisories
Package Information
Description:

Repository: https://github.com/docker/docker
Homepage: https://github.com/docker/docker
Latest Release: v28.2.2+incompatible
7 months ago
Dependent Repos: 40,103
Dependent Packages: 16,935
Ranking: Top 0.0289% by dependent repos Top 0.0137% by dependent pkgs
PR Status
Open 2,492 (47.1%)
Merged 824 (15.6%)
Closed 1,577 (29.8%)
PR Types
Minor 1,997 (37.8%)
Major 1,960 (37.1%)
Patch 934 (17.7%)