Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/go-git/go-git/v5

Ecosystem:
go
Package URL:
pkg:golang/github.com/go-git/go-git/v5
Total PRs:
2,725 Dependabot PRs
Latest PR:
12 days ago
Unique Repositories:
1,120 repositories
Unique Repos (30 days):
50 repositories
Security Advisories
go-git: Malformed Git object data may cause panics or resource exhaustion
GHSA-w5pp-99ch-qj29 MODERATE published 17 days ago • updated 5 days ago
### Impact Several denial-of-service issues were identified in `go-git` when parsing maliciously crafted Git repository data. An attacker may craf...
go-git: Credential leak via cross-host redirect in smart HTTP transport
GHSA-3xc5-wrhm-f963 CVE-2026-41506 MODERATE published about 2 months ago • updated 5 days ago
### Impact `go-git` may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. If a remote re...
go-git improperly verifies data integrity values for .idx and .pack files
GHSA-37cx-329c-33x3 CVE-2026-25934 MODERATE published 4 months ago • updated 4 days ago
### Impact A vulnerability was discovered in `go-git` whereby data integrity values for `.pack` and `.idx` files were not properly verified. This...
Maliciously crafted Git server replies can cause DoS on go-git clients
GHSA-mw99-9chc-xw7r CVE-2023-49568 HIGH published over 2 years ago • updated 1 day ago
### Impact A denial of service (DoS) vulnerability was discovered in go-git versions prior to `v5.11`. This vulnerability allows an attacker to per...
go-git: Improper single-quote escaping in go-git SSH transport
GHSA-m7cr-m3pv-hgrp CVE-2026-45570 LOW published 27 days ago • updated 6 days ago
### Impact `go-git`'s SSH transport constructs the remote exec command by wrapping the repository path in single quotes without escaping single qu...
View all 12 advisories
Recent PRs (filtered by: Patch PRs )
RSS Feed Clear filter
build(deps): bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5

Ensono/eirctl #78

5.16.3 → 5.16.5 Patch PR
Open 4 months ago 1 comment
Ensono
[chore](deps): Bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5

agilira/argus-provider-git #3

5.16.3 → 5.16.5 Patch PR
Open 4 months ago 1 comment
agilira
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

cjcocokriisp/argo-cd #43

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
cjcocokriisp
[v1.3.x]: Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

openstack-k8s-operators/osp-director-operator #1247

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 2 comments
openstack-k8s-operators
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

paepckehh/opnborg #33

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
paepckehh
chore(deps): Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.5

argoproj-labs/argocd-monorepo-controller #96

5.16.2 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
argoproj-labs
build(deps): bump the all group with 3 updates

kubernetes-sigs/bom #601

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 2 comments
kubernetes-sigs
feat(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

actions-marketplace-validations/xmidt-org_release-builder-action #8

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
actions-marketplace-validations
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

Priyans-hu/argus #43

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
Priyans-hu
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.5 in the go_modules group across 1 directory

Klomgor/coder #661

5.16.2 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
Klomgor
deps(deps): bump github.com/go-git/go-git/v5 from 5.16.0 to 5.16.5

gone-io/gonectl #56

5.16.0 → 5.16.5 Patch PR
Open 4 months ago 1 comment
gone-io
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in the go_modules group across 1 directory

kartverket/skipctl #260

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
kartverket
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

kubernetes-sigs/downloadkubernetes #841

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 3 comments
kubernetes-sigs
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /cmd/firmware-action

9elements/firmware-action #848

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
9elements
Bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5 in /internal/tools

halcyondude/opentelemetry-collector-contrib #173

5.16.3 → 5.16.5 Patch PR
Closed 4 months ago 3 comments
halcyondude
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

meshery/meshery #17379

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
meshery
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /backend in the go_modules group across 1 directory

getarcaneapp/arcane #1701

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 2 comments
getarcaneapp
deps: bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

stuffbucket/coop #23

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
stuffbucket
build(deps): bump the go_modules group across 2 directories with 1 update

ryanmaclean/vibecode-webgui #1883

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 8 comments
ryanmaclean
feat(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

octomation/maintainer #398

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
octomation
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

taikoxyz/taiko-mono #21307

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
taikoxyz
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

fluxcd/image-automation-controller #1006

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
fluxcd
:seedling: Bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5

ossf/scorecard-action #1635

5.16.3 → 5.16.5 Patch PR
Open 4 months ago 1 comment
ossf
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5

codacy/codacy-trivy #236

5.16.3 → 5.16.5 Patch PR
Open 4 months ago 1 comment
codacy
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

fluxcd/flux2 #5710

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
fluxcd
chore(deps)(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /k8s-scan-server

bvboe/b2s-go #52

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
bvboe
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

paketo-buildpacks/dotnet-core-sdk #1031

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
paketo-buildpacks
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /tools/src/go-mkopensource

telepresenceio/telepresence #4052

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
telepresenceio
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

kubernetes-sigs/release-sdk #512

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
kubernetes-sigs
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

kubesphere/kubekey #2992

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 3 comments
kubesphere
build(deps): bump the go_modules group across 2 directories with 1 update

pulumi/pulumi-self-hosted-installers #1016

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
pulumi
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

kubernetes-sigs/promo-tools #1695

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 4 comments
kubernetes-sigs
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /internal/tools in the go_modules group across 1 directory

coralogix/opentelemetry-go-instrumentation #1

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
coralogix
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in the go_modules group across 1 directory

EPOS-ERIC/converter-routine-go #6

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
EPOS-ERIC
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in the go_modules group across 1 directory

cneill/mon #2

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
cneill
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /hack/tools/changelog

cerbos/cerbos #2956

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
cerbos
Bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5 in /integrations/terraform

gravitational/teleport #63668

5.16.3 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
gravitational
chore(deps): Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

epam/edp-cd-pipeline-operator #182

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
epam
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

kubernetes/release #4261

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 2 comments
kubernetes
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /inf

adlandh/post-forwarder #277

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
adlandh
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

jh125486/CSCE4350_gradebot #2

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
jh125486
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

muhlba91/pulumi-shared-library #103

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
muhlba91
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

open-component-model/ocm #1816

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
open-component-model
Bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5 in /integrations/terraform-mwi

gravitational/teleport #63667

5.16.3 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
gravitational
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

ortelius/pdvd-backend #52

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 1 comment
ortelius
build(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in the go_modules group across 1 directory

google/osv-scanner #2504

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
google
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

openstack-k8s-operators/osp-director-operator #1244

5.16.4 → 5.16.5 Patch PR
Closed 4 months ago 2 comments
openstack-k8s-operators
Bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.5 in /internal/tools in the go_modules group across 1 directory

nosportugal/opentelemetry-collector-contrib #3

5.16.3 → 5.16.5 Patch PR
Closed 4 months ago 3 comments
nosportugal
Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

GoogleCloudPlatform/cluster-toolkit #5217

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
GoogleCloudPlatform
chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5

akuity/kargo #5717

5.16.4 → 5.16.5 Patch PR
Open 4 months ago 1 comment
akuity
Package Details
Name: github.com/go-git/go-git/v5
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/go-git/go-git/v5
JSON API: View JSON
Security Advisories

12

Active advisories
CRITICAL 2
HIGH 3
MODERATE 5
LOW 2
View All golang Advisories
Package Information
Description:

A highly extensible git implementation in pure Go. go-git aims to reach the completeness of libgit2 or jgit, nowadays covers the majority of the plumbing read operations and some of the main write operations, but lacks the main porcelain operations such as merges. It is highly extensible, we have been following the open/close principle in its design to facilitate extensions, mainly focusing the efforts on the persistence of the objects.

Repository: https://github.com/go-git/go-git
Homepage: https://github.com/go-git/go-git
Latest Release: v5.16.1
about 1 year ago
Dependent Repos: 13,417
Dependent Packages: 8,164
Ranking: Top 0.0657% by dependent repos Top 0.0353% by dependent pkgs
PR Status
Open 1,210 (44.4%)
Merged 308 (11.3%)
Closed 962 (35.3%)
PR Types
Minor 1,408 (51.7%)
Patch 1,072 (39.3%)