`github.com/go-git/go-git/v5`

Ecosystem:
go

Package URL:
pkg:golang/github.com/go-git/go-git/v5

Total PRs:
1,669 Dependabot PRs

Latest PR:
1 day ago

Unique Repositories:
645 repositories

Unique Repos (30 days):
23 repositories

Security Advisories

Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

GHSA-449p-3h89-pw88 CVE-2023-49569 CRITICAL published almost 2 years ago • updated 3 months ago

### Impact A path traversal vulnerability was discovered in go-git versions prior to `v5.11`. This vulnerability allows an attacker to create and a...

5.16.2 → 5.16.3 Patch PR

Open 9 days ago 2 comments

Bump the go group across 1 directory with 90 updates

soitun/teleport #819

5.16.2 → 5.16.3 Patch PR

Open 11 days ago 1 comment

build(deps): bump the non-majors group with 18 updates

traPtitech/NeoShowcase #1125

5.16.2 → 5.16.3 Patch PR

Open 11 days ago 1 comment

Bump the go group with 90 updates

psy-repos-go/teleport #482

5.16.2 → 5.16.3 Patch PR

Open 12 days ago 2 comments

Bump the go group across 1 directory with 90 updates

sigtrap/teleport #3499

5.16.2 → 5.16.3 Patch PR

Open 12 days ago 2 comments

build(deps): bump the dependencies group across 1 directory with 7 updates

nektos/act #5963

5.16.2 → 5.16.3 Patch PR

Open 12 days ago 1 comment

Bump the gomod group across 1 directory with 18 updates

IvanGDR/scylla-operator_1.18_1 #3

5.16.2 → 5.16.3 Patch PR

Open 29 days ago 1 comment

Bump the gomod group across 1 directory with 11 updates

scylladb/scylla-operator #3003

5.16.2 → 5.16.3 Patch PR

Open 29 days ago 2 comments

build(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

stackrox/scanner #2304

5.16.2 → 5.16.3 Patch PR

Open 29 days ago 1 comment

Bump the go group across 1 directory with 52 updates

psy-repos-go/teleport #427

5.16.2 → 5.16.3 Patch PR

Open 29 days ago 1 comment

Bump the all group across 1 directory with 10 updates

palnabarun/release #342

5.16.0 → 5.16.3 Patch PR

Open 30 days ago 2 comments

Bump the go-dependencies group across 1 directory with 8 updates

fission/fission #3266

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago 1 comment

Bump the go-modules group across 1 directory with 24 updates

paketo-buildpacks/node-engine #1325

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 20 updates

paketo-buildpacks/pip-install #524

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 18 updates

paketo-buildpacks/pip-install #523

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

build(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

xmudrii/publishing-bot #39

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago 1 comment

chore(deps): bump the go group across 1 directory with 13 updates

open-component-model/ocm #1641

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 21 updates

paketo-buildpacks/pip #774

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 11 updates

paketo-buildpacks/yarn-install #1050

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 92 updates

paketo-buildpacks/miniconda #657

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

chore(deps): bump the go group across 1 directory with 16 updates

SwissDataScienceCenter/amalthea #1028

5.16.0 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 17 updates

paketo-buildpacks/pipenv #723

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 17 updates

paketo-buildpacks/nginx #1019

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the gomod group across 1 directory with 15 updates

IvanGDR/scylla-operator_1.18_1 #2

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago 1 comment

Bump the gomod group with 8 updates

scylladb/scylla-operator #2991

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 18 updates

paketo-buildpacks/go-dist #1133

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 17 updates

paketo-buildpacks/httpd #935

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 12 updates

paketo-buildpacks/go-mod-vendor #948

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the all-dependencies group across 1 directory with 4 updates

jh125486/CSCE5350_gradebot #26

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the global group across 1 directory with 4 updates

Chia-Network/repo-content-updater #70

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

chore: bump the engine group across 2 directories with 21 updates

dagger/dagger #11193

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

fix(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

weaveworks/weave-gitops #5235

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

runmedev/runme #933

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 15 updates

paketo-buildpacks/pip #773

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the go-modules group across 1 directory with 5 updates

paketo-buildpacks/yarn-install #1049

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago 1 comment

Bump the go-modules group across 1 directory with 6 updates

paketo-buildpacks/go-build #909

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

build(deps): Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

keecon/talert #191

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

chore(deps): Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

caffeine-addictt/waku #250

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

xremap/aur-autoupdater #80

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

build(deps): bump github.com/go-git/go-git/v5 from 5.16.0 to 5.16.3

listendev/lstn #329

5.16.0 → 5.16.3 Patch PR

Open about 1 month ago

Bump the gomod group with 3 updates

carabiner-dev/beaker #16

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

deps(deps): bump github.com/go-git/go-git/v5 from 5.16.0 to 5.16.3

gone-io/gonectl #44

5.16.0 → 5.16.3 Patch PR

Open about 1 month ago 1 comment

Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

devfile/alizer #253

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago 1 comment

chore(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3 in /internal/generator

andrewkroh/go-ecs #51

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

build(deps): Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

lonegunmanb/terraform-azapi-schema #79

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump the backend group with 5 updates

PhoenixRedflash/hub #481

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

build(deps): bump the gomod group across 1 directory with 3 updates

heyden/allstar #131

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

build(deps): bump the go-dependencies group across 1 directory with 14 updates

buildpacks/pack #2449

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

chore(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

dev-kas/xel #14

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

internetblacksmith/createpr #8

5.16.2 → 5.16.3 Patch PR

Open about 1 month ago

Package Details

Name:	`github.com/go-git/go-git/v5`
Ecosystem:	go
PURL Type:	golang
Package URL:	`pkg:golang/github.com/go-git/go-git/v5`
JSON API:	View JSON

Security Advisories

4

Active advisories

CRITICAL 2

HIGH 2

View All golang Advisories

Package Information

Description:

A highly extensible git implementation in pure Go. go-git aims to reach the completeness of libgit2 or jgit, nowadays covers the majority of the plumbing read operations and some of the main write operations, but lacks the main porcelain operations such as merges. It is highly extensible, we have been following the open/close principle in its design to facilitate extensions, mainly focusing the efforts on the persistence of the objects.

Repository:	https://github.com/go-git/go-git
Homepage:	https://github.com/go-git/go-git
Latest Release:	`v5.16.1` 5 months ago
Dependent Repos:	13,417
Dependent Packages:	8,164
Ranking:	Top 0.0657% by dependent repos Top 0.0353% by dependent pkgs

PR Status

Open 772 (46.3%)

Merged 308 (18.5%)

Closed 343 (20.6%)

PR Types

Minor 769 (46.1%)

Patch 654 (39.2%)

github.com/go-git/go-git/v5

Security Advisories

Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

go-git clients vulnerable to DoS via maliciously crafted Git server replies

go-git has an Argument Injection via the URL field

Maliciously crafted Git server replies can cause DoS on go-git clients

Recent PRs (filtered by: Open , Patch PRs )

Package Details

Security Advisories

4

Package Information

PR Status

PR Types

`github.com/go-git/go-git/v5`