Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/docker/docker

Ecosystem:
go
Package URL:
pkg:golang/github.com/docker/docker
Total PRs:
5,467 Dependabot PRs
Latest PR:
15 days ago
Unique Repositories:
1,823 repositories
Unique Repos (30 days):
4 repositories
Security Advisories
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
GHSA-vp62-88p7-qqf5 CVE-2026-41568 MODERATE published 16 days ago • updated 4 days ago
## Summary A race condition during `docker cp` mount setup allows a malicious container to create empty files or directories at arbitrary absolute...
/sys/devices/virtual/powercap accessible by default to containers
GHSA-jq35-85cj-fj4p MODERATE published over 2 years ago • updated 6 days ago
Intel's RAPL (Running Average Power Limit) feature, introduced by the Sandy Bridge microarchitecture, provides software insights into hardware ener...
Arbitrary File Write in Libcontainer
GHSA-g44j-7vp3-68cv CVE-2015-3629 HIGH published over 4 years ago • updated about 2 hours ago
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization ("mount namespace breakout") and write to arbitrary fil...
Moby (Docker Engine) started with non-empty inheritable Linux process capabilities
GHSA-2mm7-x5h6-5pvq CVE-2022-24769 MODERATE published about 2 years ago • updated 2 days ago
### Impact A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities...
Arbitrary File Override in Docker Engine
GHSA-v4h8-794j-g8mm CVE-2015-3631 MODERATE published over 4 years ago • updated 16 days ago
Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules (LSM) and docker_t policies via an image that allows volumes ...
View all 33 advisories
Recent PRs (filtered by: Closed , Major PRs )
RSS Feed Clear filter
chore(deps): bump the common group across 1 directory with 12 updates

wuxler/ruasec #79

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed 16 days ago 1 comment
wuxler
Bump github.com/docker/docker from 24.0.7+incompatible to 28.5.2+incompatible in /internal/docker

philchia/opentelemetry-collector-contrib #26056

24.0.7+incompatible → 28.5.2+incompatible Major PR
Closed about 1 month ago 3 comments
philchia
Bump github.com/docker/docker from 24.0.4+incompatible to 28.5.2+incompatible in /internal/docker

kovrus/opentelemetry-collector-contrib #37976

24.0.4+incompatible → 28.5.2+incompatible Major PR
Closed about 1 month ago 3 comments
kovrus
chore(deps): bump the go-deps group in /agents/docker-agent with 4 updates

streamspace-dev/streamspace #250

25.0.13+incompatible → 28.5.2+incompatible Major PR
Closed about 1 month ago 1 comment
streamspace-dev
build(deps): bump github.com/docker/docker from 20.10.17+incompatible to 28.5.2+incompatible

doytsujin/act #313

20.10.17+incompatible → 28.5.2+incompatible Major PR
Closed 2 months ago 2 comments
doytsujin
chore(deps): bump the engine group across 1 directory with 75 updates

aluzzardi/dagger #736

27.1.1+incompatible → 28.5.2+incompatible Major PR
Closed 2 months ago 2 comments
aluzzardi
chore(deps): bump the go_modules group across 5 directories with 23 updates

GlacierEQ/sourcegraph-public-snapshot #13

26.0.2+incompatible → 28.0.0+incompatible Major PR
Closed 2 months ago 3 comments
GlacierEQ
Bump github.com/docker/docker from 27.3.1+incompatible to 28.0.0+incompatible in /integration-tests

hashicorp/consul-dataplane #1029

27.3.1+incompatible → 28.0.0+incompatible Major PR
Closed 2 months ago 1 comment
hashicorp
build(deps): bump the go_modules group across 2 directories with 2 updates

ovn-kubernetes/ovn-kubernetes #6132

26.1.5+incompatible → 28.0.0+incompatible Major PR
Closed 3 months ago 5 comments
ovn-kubernetes
chore(deps): bump the go_modules group across 1 directory with 8 updates

Layr-Labs/kona #19

27.5.1+incompatible → 28.0.0+incompatible Major PR
Closed 3 months ago 3 comments
Layr-Labs
Bump the go_modules group across 2 directories with 9 updates

c6ai/fabric-private-chaincode #3

23.0.2+incompatible → 25.0.13+incompatible Major PR
Closed 3 months ago 1 comment
c6ai
Bump github.com/docker/docker from 27.1.1+incompatible to 28.0.0+incompatible

openshift/openshift-velero-plugin #380

27.1.1+incompatible → 28.0.0+incompatible Major PR
Closed 3 months ago 6 comments
openshift
build(deps): bump github.com/docker/docker from 27.5.1+incompatible to 28.5.2+incompatible

davidebaraldo/Klaudio #9

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed 3 months ago 2 comments
davidebaraldo
chore(deps): bump github.com/docker/docker from 24.0.9+incompatible to 25.0.13+incompatible in /forge-go

rustic-ai/forge #2

24.0.9+incompatible → 25.0.13+incompatible Major PR
Closed 3 months ago 1 comment
rustic-ai
go: bump the go_modules group across 2 directories with 6 updates

chaos-mesh/chaos-mesh #4835

26.1.5+incompatible → 28.0.0+incompatible Major PR
Closed 3 months ago 2 comments
chaos-mesh
chore(deps): bump the go_modules group across 9 directories with 14 updates

PreFrontalCorporate/ibc-apps #2

20.10.19+incompatible → 25.0.13+incompatible Major PR
Closed 3 months ago 1 comment
PreFrontalCorporate
chore(deps): bump github.com/docker/docker from 27.5.1+incompatible to 28.0.0+incompatible in /rust/op-reth/crates/tests

ethereum-optimism/optimism #19236

27.5.1+incompatible → 28.0.0+incompatible Major PR
Closed 4 months ago 2 comments
ethereum-optimism
chore(deps): bump the go_modules group across 1 directory with 6 updates

Layr-Labs/kona #16

27.5.1+incompatible → 28.0.0+incompatible Major PR
Closed 4 months ago 3 comments
Layr-Labs
chore(deps): bump github.com/docker/docker from 25.0.5+incompatible to 28.5.2+incompatible

avivsinai/sabx #9

25.0.5+incompatible → 28.5.2+incompatible Major PR
Closed 4 months ago 2 comments
avivsinai
Bump github.com/docker/docker from 24.0.5+incompatible to 28.5.2+incompatible in /receiver/dockerstatsreceiver

SabreOSS/opentelemetry-collector-contrib #43163

24.0.5+incompatible → 28.5.2+incompatible Major PR
Closed 4 months ago 3 comments
SabreOSS
Bump github.com/docker/docker from 24.0.7+incompatible to 28.5.2+incompatible in /receiver/dockerstatsreceiver

philchia/opentelemetry-collector-contrib #24170

24.0.7+incompatible → 28.5.2+incompatible Major PR
Closed 4 months ago 3 comments
philchia
chore(deps): Bump the go_modules group across 1 directory with 11 updates

PreFrontalCorporate/gaia #86

27.1.1+incompatible → 28.0.0+incompatible Major PR
Closed 5 months ago 3 comments
PreFrontalCorporate
Bump github.com/docker/docker from 27.1.1+incompatible to 28.0.0+incompatible

chainguard-forks/rabbitmq_exporter #4

27.1.1+incompatible → 28.0.0+incompatible Major PR
Closed 5 months ago 1 comment
chainguard-forks
Bump github.com/docker/docker from 1.4.2-0.20200214221943-d8772509d1a2 to 25.0.13+incompatible in /tests/integration/functional

osrg/rustybgp #260

1.4.2-0.20200214221943-d8772509d1a2 → 25.0.13+incompatible Major PR
Closed 5 months ago 1 comment
osrg
build(deps): bump the moby group with 2 updates

apptainer/apptainer #3294

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed 5 months ago 2 comments
apptainer
build(deps): bump github.com/docker/docker from 27.4.1+incompatible to 28.0.0+incompatible

crazy-max/swarm-cronjob #409

27.4.1+incompatible → 28.0.0+incompatible Major PR
Closed 5 months ago 2 comments
crazy-max
Bump github.com/docker/docker from 27.1.1+incompatible to 28.0.0+incompatible

tdunlap607/rabbitmq_exporter #2

27.1.1+incompatible → 28.0.0+incompatible Major PR
Closed 5 months ago 1 comment
tdunlap607
Bump github.com/docker/docker from 27.5.0+incompatible to 28.0.0+incompatible

kluster-manager/clusteradm #6

27.5.0+incompatible → 28.0.0+incompatible Major PR
Closed 5 months ago 1 comment
kluster-manager
Bump github.com/docker/docker from 27.5.0+incompatible to 28.0.0+incompatible

kluster-manager/cluster-profile #34

27.5.0+incompatible → 28.0.0+incompatible Major PR
Closed 5 months ago 1 comment
kluster-manager
Bump github.com/docker/docker from 24.0.0+incompatible to 25.0.13+incompatible

appscode-images/image-syncer #2

24.0.0+incompatible → 25.0.13+incompatible Major PR
Closed 5 months ago 1 comment
appscode-images
Bump github.com/docker/docker from 24.0.7+incompatible to 25.0.13+incompatible

functionland/go-fula #230

24.0.7+incompatible → 25.0.13+incompatible Major PR
Closed 5 months ago 1 comment
functionland
build(deps): bump the moby group with 2 updates

apptainer/apptainer #3276

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 2 comments
apptainer
build(deps): bump github.com/docker/docker from 24.0.5+incompatible to 28.5.2+incompatible

pivotal-cf/kiln #596

24.0.5+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 2 comments
pivotal-cf
build(deps): bump the go_modules group across 1 directory with 5 updates

doperiddle/k3d #56

27.4.1+incompatible → 28.0.0+incompatible Major PR
Closed 6 months ago 1 comment
doperiddle
Bump github.com/docker/docker from 24.0.7+incompatible to 28.5.2+incompatible in /extension/observer/dockerobserver

pcwiese/opentelemetry-collector-contrib #31645

24.0.7+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 3 comments
pcwiese
Bump github.com/docker/docker from 27.1.1+incompatible to 28.0.0+incompatible

temporalio/reference-app-orders-go #110

27.1.1+incompatible → 28.0.0+incompatible Major PR
Closed 6 months ago 3 comments
temporalio
chore(deps): bump the go_modules group across 1 directory with 5 updates

Layr-Labs/kona #12

27.5.1+incompatible → 28.0.0+incompatible Major PR
Closed 6 months ago 3 comments
Layr-Labs
Bump github.com/docker/docker from 27.3.1+incompatible to 28.0.0+incompatible in /tools/release/image-mirror

Read-AI-Inc/aws-otel-collector #3

27.3.1+incompatible → 28.0.0+incompatible Major PR
Closed 6 months ago 1 comment
Read-AI-Inc
Bump github.com/docker/docker from 27.2.0+incompatible to 28.0.0+incompatible in /quickstarttest

GoogleCloudPlatform/opentelemetry-operations-e2e-testing #83

27.2.0+incompatible → 28.0.0+incompatible Major PR
Closed 6 months ago 1 comment
GoogleCloudPlatform
chore(deps): bump github.com/docker/docker from 20.10.21+incompatible to 28.5.2+incompatible

Southclaws/sampctl #537

20.10.21+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 1 comment
Southclaws
build(deps): bump the moby group with 2 updates

apptainer/apptainer #3244

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 2 comments
apptainer
Bump github.com/docker/docker from 24.0.2+incompatible to 28.5.2+incompatible in /extension/observer/dockerobserver

coralogix/opentelemetry-collector-contrib #36251

24.0.2+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 3 comments
coralogix
Bump github.com/docker/docker from 27.5.1+incompatible to 28.5.2+incompatible

srl-labs/containerlab #2956

27.5.1+incompatible → 28.5.2+incompatible Major PR
Closed 6 months ago 2 comments
srl-labs
chore(deps): bump the go_modules group across 1 directory with 10 updates

spring-financial-group/jx-updatebot #25

27.3.1+incompatible → 28.0.0+incompatible Major PR
Closed 7 months ago 1 comment
spring-financial-group
chore(deps): bump the go_modules group across 18 directories with 13 updates

Ayie99969/sanguine #6

20.10.23+incompatible → 25.0.13+incompatible Major PR
Closed 7 months ago 1 comment
Ayie99969
Bump the go_modules group across 2 directories with 5 updates

dwydler/zoraxy #8

27.0.0+incompatible → 28.0.0+incompatible Major PR
Closed 7 months ago 1 comment
dwydler
Bump github.com/docker/docker from 24.0.2+incompatible to 28.5.2+incompatible in /extension/observer/dockerobserver

mwear/opentelemetry-collector-contrib #21350

24.0.2+incompatible → 28.5.2+incompatible Major PR
Closed 7 months ago 3 comments
mwear
Bump github.com/docker/docker from 24.0.2+incompatible to 28.5.2+incompatible in /receiver/dockerstatsreceiver

mwear/opentelemetry-collector-contrib #21246

24.0.2+incompatible → 28.5.2+incompatible Major PR
Closed 7 months ago 3 comments
mwear
Bump the go_modules group across 2 directories with 3 updates

open-edge-platform/infra-onboarding #363

26.1.5+incompatible → 28.0.0+incompatible Major PR
Closed 7 months ago 3 comments
open-edge-platform
Bump the go_modules group across 2 directories with 19 updates

JohnMatthiasWabwire/zadig #2

23.0.1+incompatible → 25.0.13+incompatible Major PR
Closed 7 months ago 1 comment
JohnMatthiasWabwire
Package Details
Name: github.com/docker/docker
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/docker/docker
JSON API: View JSON
Security Advisories

33

Active advisories
CRITICAL 2
HIGH 10
MODERATE 18
LOW 3
View All golang Advisories
Package Information
Description:

Repository: https://github.com/docker/docker
Homepage: https://github.com/docker/docker
Latest Release: v28.2.2+incompatible
about 1 year ago
Dependent Repos: 40,103
Dependent Packages: 16,935
Ranking: Top 0.0289% by dependent repos Top 0.0137% by dependent pkgs
PR Status
Open 2,557 (46.8%)
Merged 824 (15.1%)
Closed 1,692 (30.9%)
PR Types
Major 2,063 (37.7%)
Minor 2,025 (37.0%)
Patch 983 (18.0%)