Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/moby/moby

Ecosystem:
go
Package URL:
pkg:golang/github.com/moby/moby
Total PRs:
153 Dependabot PRs
Latest PR:
10 days ago
Unique Repositories:
39 repositories
Unique Repos (30 days):
20 repositories
Security Advisories
Moby (Docker Engine) started with non-empty inheritable Linux process capabilities
GHSA-2mm7-x5h6-5pvq CVE-2022-24769 MODERATE published over 1 year ago • updated 3 months ago
### Impact A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities...
Path Traversal in Moby builder
GHSA-6hwg-w5jg-9c6x CVE-2020-27534 MODERATE published over 1 year ago • updated 2 months ago
util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, con...
moby Access to remapped root allows privilege escalation to real root
GHSA-7452-xqpj-6rpc CVE-2021-21284 MODERATE published over 1 year ago • updated 3 months ago
### Impact When using `--userns-remap`, if the root user in the remapped namespace has access to the host filesystem they can modify files under `...
moby docker daemon crash during image pull of malicious image
GHSA-6fj5-m822-rqx8 CVE-2021-21285 MODERATE published over 1 year ago • updated 3 months ago
### Impact Pulling an intentionally malformed Docker image manifest crashes the `dockerd` daemon. ### Patches Versions 20.10.3 and 19.03.15 cont...
Moby Race Condition vulnerability
GHSA-2mj3-vfvx-fc43 CVE-2024-36621 HIGH published 11 months ago • updated 2 months ago
moby v25.0.5 is affected by a Race Condition in builder/builder-next/adapters/snapshot/layer.go. The vulnerability could be used to trigger concurr...
View all 10 advisories
Recent PRs
RSS Feed
deps: bump github.com/moby/moby from 28.5.0+incompatible to 28.5.1+incompatible

0xB1a60/runapp #49

28.5.0+incompatible → 28.5.1+incompatible Patch PR
Merged 10 days ago
0xB1a60
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.5.0+incompatible

defExistentia/coder-2.24.3-modified #77

28.2.2+incompatible → 28.5.0+incompatible Minor PR
Open 12 days ago
defExistentia
chore: bump github.com/moby/moby from 28.3.0+incompatible to 28.5.0+incompatible

officialmofabs/coder #444

28.3.0+incompatible → 28.5.0+incompatible Minor PR
Open 12 days ago
officialmofabs
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.5.0+incompatible

onchainengineering/hmi-computer #324

27.3.1+incompatible → 28.5.0+incompatible Major PR
Open 12 days ago
onchainengineering
chore: bump github.com/moby/moby from 28.4.0+incompatible to 28.5.0+incompatible

coder/coder #20177

28.4.0+incompatible → 28.5.0+incompatible Minor PR
Open 12 days ago
coder
chore(deps): Bump github.com/moby/moby from 28.4.0+incompatible to 28.5.0+incompatible in /test/docker-e2e

celestiaorg/celestia-app #5967

28.4.0+incompatible → 28.5.0+incompatible Minor PR
Merged 12 days ago 1 comment
celestiaorg
chore(deps): Bump github.com/moby/moby from 27.5.1+incompatible to 28.5.0+incompatible in /test/docker-e2e

RyanCarlisle/celestia-app #96

27.5.1+incompatible → 28.5.0+incompatible Major PR
Open 12 days ago 1 comment
RyanCarlisle
Bump the docker group across 1 directory with 5 updates

dsp-testing/dpabot-cli-4 #9

28.2.2+incompatible → 28.5.0+incompatible Minor PR
Open 13 days ago
dsp-testing
Bump the docker group across 1 directory with 5 updates

dsp-testing/dpabot-cli #12

28.2.2+incompatible → 28.5.0+incompatible Minor PR
Open 13 days ago
dsp-testing
Bump the docker group with 4 updates

dependabot/cli #521

28.4.0+incompatible → 28.5.0+incompatible Minor PR
Open 13 days ago
dependabot
go: bump the docker group across 1 directory with 4 updates

eiffel-fl/inspektor-gadget #334

28.2.2+incompatible → 28.5.0+incompatible Minor PR
Open 15 days ago
eiffel-fl
go: bump the docker group across 1 directory with 3 updates

inspektor-gadget/inspektor-gadget #4951

28.4.0+incompatible → 28.5.0+incompatible Minor PR
Open 15 days ago
inspektor-gadget
Bump github.com/moby/moby from 28.4.0+incompatible to 28.5.0+incompatible in /examples/go

jakecoffman/auto-merge #674

28.4.0+incompatible → 28.5.0+incompatible Minor PR
Merged 15 days ago
jakecoffman
chore(deps): bump the dependencies group with 17 updates

Scalingo/sand #307

28.3.3+incompatible → 28.4.0+incompatible Minor PR
Open 17 days ago
Scalingo
chore: bump github.com/moby/moby from 28.0.0+incompatible to 28.4.0+incompatible

klosraf/coder #51

28.0.0+incompatible → 28.4.0+incompatible Minor PR
Open 19 days ago
klosraf
build(deps): bump the docker group with 6 updates

SherfeyInv/brew #136

27.3.1+incompatible → 28.4.0+incompatible Major PR
Open 20 days ago 2 comments
SherfeyInv
build(deps): bump the dependencies group with 2 updates

Scalingo/go-plugins-helpers #85

28.3.3+incompatible → 28.4.0+incompatible Minor PR
Merged 25 days ago
Scalingo
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.4.0+incompatible

onchainengineering/hmi-wirtual #314

27.3.1+incompatible → 28.4.0+incompatible Major PR
Open 26 days ago
onchainengineering
chore: bump github.com/moby/moby from 28.0.0+incompatible to 28.4.0+incompatible

ongood/coder #1152

28.0.0+incompatible → 28.4.0+incompatible Minor PR
Open 26 days ago
ongood
Bump the docker group with 4 updates

dsp-testing/dpabot-cli #10

28.2.2+incompatible → 28.4.0+incompatible Minor PR
Closed 27 days ago 1 comment
dsp-testing
Bump the docker group with 4 updates

dsp-testing/dpabot-cli-4 #7

28.2.2+incompatible → 28.4.0+incompatible Minor PR
Open 30 days ago
dsp-testing
Bump the docker group with 4 updates

robaiken/dpabot-cli-2 #1

28.2.2+incompatible → 28.4.0+incompatible Minor PR
Closed about 1 month ago 1 comment
robaiken
Bump the all group across 1 directory with 17 updates

dependabot/cli #512

28.3.3+incompatible → 28.4.0+incompatible Minor PR
Merged about 1 month ago
dependabot
Bump the docker group with 3 updates

dependabot/cli #510

28.3.3+incompatible → 28.4.0+incompatible Minor PR
Closed about 1 month ago 1 comment
dependabot
chore: bump github.com/moby/moby from 28.3.0+incompatible to 28.4.0+incompatible

officialmofabs/coder #408

28.3.0+incompatible → 28.4.0+incompatible Minor PR
Open about 1 month ago 2 comments
officialmofabs
chore: bump github.com/moby/moby from 28.3.0+incompatible to 28.4.0+incompatible

coder/coder #19733

28.3.0+incompatible → 28.4.0+incompatible Minor PR
Open about 1 month ago
coder
chore: bump github.com/moby/moby from 27.1.1+incompatible to 28.4.0+incompatible

kehanzhang/athens-coder #619

27.1.1+incompatible → 28.4.0+incompatible Major PR
Closed about 1 month ago
kehanzhang
chore(deps): Bump github.com/moby/moby from 27.5.1+incompatible to 28.4.0+incompatible in /test/docker-e2e

celestiaorg/celestia-app #5689

27.5.1+incompatible → 28.4.0+incompatible Major PR
Open about 1 month ago
celestiaorg
Bump the all group across 1 directory with 19 updates

dsp-testing/dpabot-cli-3 #8

28.2.2+incompatible → 28.4.0+incompatible Minor PR
Open about 1 month ago
dsp-testing
Bump the all group across 1 directory with 19 updates

dsp-testing/dpabot-cli #8

28.2.2+incompatible → 28.4.0+incompatible Minor PR
Open about 1 month ago 1 comment
dsp-testing
Bump the all group across 1 directory with 19 updates

dsp-testing/dpabot-cli-2 #8

28.2.2+incompatible → 28.4.0+incompatible Minor PR
Closed about 1 month ago 1 comment
dsp-testing
Bump the all group across 1 directory with 15 updates

dependabot/cli #509

28.3.3+incompatible → 28.4.0+incompatible Minor PR
Open about 1 month ago
dependabot
Bump github.com/moby/moby from 28.3.3+incompatible to 28.4.0+incompatible in /examples/go

jakecoffman/auto-merge #654

28.3.3+incompatible → 28.4.0+incompatible Minor PR
Open about 1 month ago
jakecoffman
chore(deps): bump github.com/moby/moby from 27.5.1+incompatible to 28.4.0+incompatible in /e2e

cosmos/ibc-go #8626

27.5.1+incompatible → 28.4.0+incompatible Major PR
Closed about 1 month ago
cosmos
chore(deps): Bump github.com/moby/moby from 27.5.1+incompatible to 28.4.0+incompatible in /test/docker-e2e

RyanCarlisle/celestia-app #69

27.5.1+incompatible → 28.4.0+incompatible Major PR
Open about 1 month ago 1 comment
RyanCarlisle
Bump the all group across 1 directory with 19 updates

dsp-testing/dpabot-cli-4 #4

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Open about 1 month ago
dsp-testing
build(deps): bump the gomod group with 8 updates

chainguard-dev/melange #2126

28.3.2+incompatible → 28.3.3+incompatible Patch PR
Merged 2 months ago 1 comment
chainguard-dev
build(deps): bump the gomod group across 1 directory with 8 updates

chainguard-dev/melange #2122

28.3.2+incompatible → 28.3.3+incompatible Patch PR
Open 2 months ago 1 comment
chainguard-dev
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.3.3+incompatible

onchainengineering/hmi-computer #263

27.3.1+incompatible → 28.3.3+incompatible Major PR
Closed 2 months ago
onchainengineering
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.3.3+incompatible

onchainengineering/hmi-wirtual #262

27.3.1+incompatible → 28.3.3+incompatible Major PR
Closed 2 months ago
onchainengineering
Bump the all group across 1 directory with 18 updates

dsp-testing/dpabot-cli #5

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Closed 2 months ago 1 comment
dsp-testing
Bump the all group across 1 directory with 18 updates

dsp-testing/dpabot-cli-3 #5

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Closed 2 months ago 1 comment
dsp-testing
build(deps): bump the all group across 1 directory with 20 updates

SherfeyInv/brew #129

27.3.1+incompatible → 28.3.3+incompatible Major PR
Open 2 months ago
SherfeyInv
Bump the all group across 1 directory with 18 updates

dsp-testing/dpabot-cli-2 #5

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Closed 2 months ago 1 comment
dsp-testing
Bump the all group across 1 directory with 7 updates

dependabot/cli #496

28.3.2+incompatible → 28.3.3+incompatible Patch PR
Open 2 months ago
dependabot
Bump the docker group across 1 directory with 3 updates

dependabot/cli #495

28.3.2+incompatible → 28.3.3+incompatible Patch PR
Open 2 months ago
dependabot
build(deps): bump the gomod group across 1 directory with 5 updates

chainguard-dev/melange #2120

28.3.2+incompatible → 28.3.3+incompatible Patch PR
Open 2 months ago 1 comment
chainguard-dev
go: bump the docker group across 2 directories with 4 updates

eiffel-fl/inspektor-gadget #320

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Open 2 months ago 2 comments
eiffel-fl
Bump the all group across 1 directory with 16 updates

dsp-testing/dpabot-cli-3 #4

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Open 2 months ago 1 comment
dsp-testing
Bump the docker group with 3 updates

dsp-testing/dpabot-cli-3 #2

28.2.2+incompatible → 28.3.3+incompatible Minor PR
Open 2 months ago
dsp-testing
Package Details
Name: github.com/moby/moby
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/moby/moby
JSON API: View JSON
Security Advisories

10

Active advisories
HIGH 2
MODERATE 8
View All golang Advisories
Package Information
Description:

Repository: https://github.com/moby/moby
Homepage: https://github.com/moby/moby
Latest Release: v27.3.1+incompatible
about 1 year ago
Dependent Repos: 1,657
Dependent Packages: 461
Ranking: Top 0.1951% by dependent repos Top 0.1978% by dependent pkgs
PR Status
Open 73 (47.7%)
Merged 20 (13.1%)
Closed 54 (35.3%)
PR Types
Major 50 (32.7%)
Patch 29 (19.0%)
Minor 68 (44.4%)