Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/go-git/go-git/v5

Ecosystem:
go
Package URL:
pkg:golang/github.com/go-git/go-git/v5
Total PRs:
2,693 Dependabot PRs
Latest PR:
2 days ago
Unique Repositories:
1,112 repositories
Unique Repos (30 days):
87 repositories
Security Advisories
go-git's improper parsing of specially crafted objects may lead to inconsistent interpretation compared to upstream Git
GHSA-389r-gv7p-r3rp CVE-2026-45022 HIGH published 14 days ago • updated 5 days ago
### Impact `go-git` may parse malformed Git objects in a way that differs from upstream Git. When `commit` or `tag` objects contain ambiguous or ma...
go-git: Improper single-quote escaping in go-git SSH transport
GHSA-m7cr-m3pv-hgrp CVE-2026-45570 LOW published 6 days ago • updated 5 days ago
### Impact `go-git`'s SSH transport constructs the remote exec command by wrapping the repository path in single quotes without escaping single qu...
go-git: Credential leak via cross-host redirect in smart HTTP transport
GHSA-3xc5-wrhm-f963 CVE-2026-41506 MODERATE published about 1 month ago • updated 5 days ago
### Impact `go-git` may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. If a remote re...
go-git: Maliciously crafted idx file can cause asymmetric memory consumption
GHSA-jhf3-xxhw-2wpp CVE-2026-34165 MODERATE published about 2 months ago • updated 5 days ago
### Impact A vulnerability has been identified in which a maliciously crafted `.idx` file can cause asymmetric memory consumption, potentially exh...
go-git improperly verifies data integrity values for .idx and .pack files
GHSA-37cx-329c-33x3 CVE-2026-25934 MODERATE published 3 months ago • updated 5 days ago
### Impact A vulnerability was discovered in `go-git` whereby data integrity values for `.pack` and `.idx` files were not properly verified. This...
View all 11 advisories
Recent PRs
RSS Feed
chore(deps): bump github.com/go-git/go-git/v5 from 5.10.0 to 5.19.1

fluid-pub/probe-gitlab #2

5.10.0 → 5.19.1 Minor PR
Open 2 days ago 1 comment
fluid-pub
Bump the go_modules group across 2 directories with 1 update

pulumi/pulumi-meraki #563

5.19.0 → 5.19.1 Patch PR
Open 3 days ago 1 comment
pulumi
chore(deps): bump the dependencies group with 2 updates

k1LoW/git-wt #192

5.19.0 → 5.19.1 Patch PR
Open 4 days ago 1 comment
k1LoW
Bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in /pulumi-language-rust

andrzejressel/pulumi-gestalt #2280

5.19.0 → 5.19.1 Patch PR
Closed 5 days ago 2 comments
andrzejressel
chore(deps): bump the go-minor group across 2 directories with 12 updates

hk8xb/gentabase-cli #25

5.17.2 → 5.19.1 Minor PR
Closed 5 days ago 1 comment
hk8xb
chore(deps): bump the go-minor group across 2 directories with 11 updates

supabase/cli-monorepo-sandbox #33

5.17.2 → 5.19.1 Minor PR
Closed 5 days ago 1 comment
supabase
build(deps): bump the minor-patch group across 1 directory with 16 updates

zapier/kubechecks #529

5.16.5 → 5.19.1 Minor PR
Closed 6 days ago 1 comment
zapier
chore(deps): bump the go-modules group across 1 directory with 31 updates

flanksource/duty #1977

5.18.0 → 5.19.1 Minor PR
Open 6 days ago 3 comments
flanksource
:seedling: Bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1

operator-framework/operator-controller #2713

5.19.0 → 5.19.1 Patch PR
Closed 6 days ago 3 comments
operator-framework
build(deps): bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in the go_modules group across 1 directory

ed006949/rmm23 #26

5.19.0 → 5.19.1 Patch PR
Closed 6 days ago 1 comment
ed006949
Bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1

aws-controllers-k8s/controller-bootstrap #43

5.19.0 → 5.19.1 Patch PR
Closed 6 days ago 2 comments
aws-controllers-k8s
chore(deps): bump github.com/go-git/go-git/v5 from 5.17.1 to 5.19.1

jenkins-x-plugins/jx-project #592

5.17.1 → 5.19.1 Minor PR
Open 6 days ago 2 comments
jenkins-x-plugins
Bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in /internal/tools

open-telemetry/opentelemetry-collector #15319

5.19.0 → 5.19.1 Patch PR
Open 6 days ago 1 comment
open-telemetry
Bump github.com/go-git/go-git/v5 from 5.17.2 to 5.19.1

Dustin4444/bashbrew #13

5.17.2 → 5.19.1 Minor PR
Open 6 days ago 4 comments
Dustin4444
Bump github.com/go-git/go-git/v5 from 5.16.5 to 5.19.1 in /qa-plugin

jfrog/jfrog-cli-platform-services #56

5.16.5 → 5.19.1 Minor PR
Open 6 days ago 1 comment
jfrog
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.1

kyverno/kyverno #16135

5.18.0 → 5.19.1 Minor PR
Closed 6 days ago 3 comments
kyverno
chore(deps): bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in the go_modules group across 1 directory

getoutreach/gobox #789

5.19.0 → 5.19.1 Patch PR
Closed 6 days ago 1 comment
getoutreach
Bump github.com/go-git/go-git/v5 from 5.16.5 to 5.19.1

codeGROOVE-dev/gitMDM #42

5.16.5 → 5.19.1 Minor PR
Open 6 days ago 1 comment
codeGROOVE-dev
chore(deps): bump github.com/go-git/go-git/v5 from 5.13.0 to 5.19.1 in /tools

newrelic/newrelic-client-go #1414

5.13.0 → 5.19.1 Minor PR
Closed 6 days ago 2 comments
newrelic
chore(deps): bump github.com/go-git/go-git/v5 from 5.17.1 to 5.19.1

jenkins-x-plugins/jx-changelog #100

5.17.1 → 5.19.1 Minor PR
Open 6 days ago 3 comments
jenkins-x-plugins
chore(deps)(deps): bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in /bjorn2scan-agent

bvboe/b2s-go #173

5.19.0 → 5.19.1 Patch PR
Closed 6 days ago 2 comments
bvboe
build(deps): bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in /cmd/firmware-action

9elements/firmware-action #883

5.19.0 → 5.19.1 Patch PR
Open 6 days ago 1 comment
9elements
🧹 chore(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.19.1

tienld-0801/tilokit #119

5.17.2 → 5.19.1 Minor PR
Open 6 days ago 4 comments
tienld-0801
Bump the all-go-mod-patch-and-minor group across 2 directories with 43 updates

aws/eks-anywhere #10771

5.17.1 → 5.19.1 Minor PR
Open 6 days ago 3 comments
aws
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.1

ruromero/gateway-operator #314

5.18.0 → 5.19.1 Minor PR
Closed 7 days ago 1 comment
ruromero
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.1

Skarlso/crd-to-sample-yaml #362

5.18.0 → 5.19.1 Minor PR
Open 7 days ago 1 comment
Skarlso
chore(deps): bump the common group across 1 directory with 29 updates

ScorpionBytes/trivy #32

5.17.2 → 5.19.0 Minor PR
Closed 10 days ago 1 comment
ScorpionBytes
chore(deps)(deps): Bump the go-minor-and-patch group with 19 updates

AlbertLee1/Weave #11

5.18.0 → 5.19.0 Minor PR
Open 11 days ago 1 comment
AlbertLee1
chore(deps): bump the go_modules group across 2 directories with 8 updates

GlacierEQ/cli #4

5.16.2 → 5.19.0 Minor PR
Open 12 days ago 2 comments
GlacierEQ
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.0 to 5.19.0 in /contrib/grpcplugins/action/plugin-artifactory-release-bundle-create

ovh/cds #7747

5.16.0 → 5.19.0 Minor PR
Closed 12 days ago 1 comment
ovh
chore(deps): bump the go_modules group across 16 directories with 6 updates

wailsapp/wails #5432

5.13.2 → 5.19.0 Minor PR
Closed 12 days ago 1 comment
wailsapp
chore(deps): bump the go_modules group across 1 directory with 13 updates

coutureb/goreleaser #11

5.13.1 → 5.19.0 Minor PR
Closed 12 days ago 1 comment
coutureb
chore(deps): bump the gomod-minor-and-patch group across 1 directory with 19 updates

speakeasy-api/speakeasy #2038

5.16.4 → 5.19.0 Minor PR
Open 12 days ago 1 comment
speakeasy-api
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0

greatnessinabox/drift #28

5.18.0 → 5.19.0 Minor PR
Closed 13 days ago 4 comments
greatnessinabox
Bump the all-go-mod-patch-and-minor group across 2 directories with 43 updates

aws/eks-anywhere #10766

5.17.1 → 5.19.0 Minor PR
Closed 14 days ago 4 comments
aws
chore(deps): bump the go-minor-patch group with 3 updates

davetashner/stringer #323

5.18.0 → 5.19.0 Minor PR
Open 14 days ago 1 comment
davetashner
chore(deps): bump github.com/go-git/go-git/v5 from 5.14.0 to 5.19.0

kubernetes-sigs/prow #717

5.14.0 → 5.19.0 Minor PR
Open 14 days ago 5 comments
kubernetes-sigs
chore(deps): bump the go-dependencies group across 1 directory with 13 updates

ConfigButler/gitops-reverser #139

5.17.2 → 5.19.0 Minor PR
Open 14 days ago 1 comment
ConfigButler
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0

yonasBSD/trivy #13

5.18.0 → 5.19.0 Minor PR
Closed 14 days ago 1 comment
yonasBSD
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0

jtprogru/jtsekret #5

5.18.0 → 5.19.0 Minor PR
Closed 14 days ago 1 comment
jtprogru
build(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.19.0 in /collector/internal/tools

sevincit/opentelemetry-lambda #88

5.17.2 → 5.19.0 Minor PR
Open 14 days ago 7 comments
sevincit
chore(deps): bump github.com/go-git/go-git/v5 from 5.17.1 to 5.19.0

jenkins-x-plugins/jx-gitops #1071

5.17.1 → 5.19.0 Minor PR
Closed 14 days ago 3 comments
jenkins-x-plugins
Bump the go_modules group across 2 directories with 1 update

pulumi/pulumi-gitlab #1200

5.18.0 → 5.19.0 Minor PR
Closed 14 days ago 1 comment
pulumi
build(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0

kubevirt/project-infra #5054

5.18.0 → 5.19.0 Minor PR
Open 14 days ago 2 comments
kubevirt
build(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.19.0

flanksource/gavel #48

5.16.5 → 5.19.0 Minor PR
Closed 14 days ago 1 comment
flanksource
Bump the go_modules group across 2 directories with 1 update

pulumi/pulumi-databricks #1111

5.18.0 → 5.19.0 Minor PR
Closed 14 days ago 2 comments
pulumi
build(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0

kubevirt/cluster-network-addons-operator #2721

5.18.0 → 5.19.0 Minor PR
Open 14 days ago 4 comments
kubevirt
Bump github.com/go-git/go-git/v5 from 5.16.5 to 5.19.0 in /.ci/tools

alialobidm/terraform-provider-aws #12

5.16.5 → 5.19.0 Minor PR
Open 14 days ago 2 comments
alialobidm
chore(deps): bump github.com/go-git/go-git/v5 from 5.17.1 to 5.19.0

jenkins-x/jx-helpers #446

5.17.1 → 5.19.0 Minor PR
Open 14 days ago 3 comments
jenkins-x
chore(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0

terramate-io/terramate #2352

5.18.0 → 5.19.0 Minor PR
Open 14 days ago 3 comments
terramate-io
Package Details
Name: github.com/go-git/go-git/v5
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/go-git/go-git/v5
JSON API: View JSON
Security Advisories

11

Active advisories
CRITICAL 2
HIGH 3
MODERATE 4
LOW 2
View All golang Advisories
Package Information
Description:

A highly extensible git implementation in pure Go. go-git aims to reach the completeness of libgit2 or jgit, nowadays covers the majority of the plumbing read operations and some of the main write operations, but lacks the main porcelain operations such as merges. It is highly extensible, we have been following the open/close principle in its design to facilitate extensions, mainly focusing the efforts on the persistence of the objects.

Repository: https://github.com/go-git/go-git
Homepage: https://github.com/go-git/go-git
Latest Release: v5.16.1
12 months ago
Dependent Repos: 13,417
Dependent Packages: 8,164
Ranking: Top 0.0657% by dependent repos Top 0.0353% by dependent pkgs
PR Status
Open 1,190 (44.2%)
Merged 308 (11.4%)
Closed 950 (35.3%)
PR Types
Minor 1,382 (51.3%)
Patch 1,066 (39.6%)