Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

github.com/moby/moby

Ecosystem:
go
Package URL:
pkg:golang/github.com/moby/moby
Total PRs:
167 Dependabot PRs
Latest PR:
3 months ago
Unique Repositories:
40 repositories
Unique Repos (30 days):
1 repository
Security Advisories
Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
GHSA-vp62-88p7-qqf5 CVE-2026-41568 MODERATE published 22 days ago • updated 11 days ago
## Summary A race condition during `docker cp` mount setup allows a malicious container to create empty files or directories at arbitrary absolute...
moby Access to remapped root allows privilege escalation to real root
GHSA-7452-xqpj-6rpc CVE-2021-21284 MODERATE published over 2 years ago • updated about 1 month ago
### Impact When using `--userns-remap`, if the root user in the remapped namespace has access to the host filesystem they can modify files under `...
Moby Race Condition vulnerability
GHSA-2mj3-vfvx-fc43 CVE-2024-36621 HIGH published over 1 year ago • updated 17 days ago
moby v25.0.5 is affected by a Race Condition in builder/builder-next/adapters/snapshot/layer.go. The vulnerability could be used to trigger concurr...
Moby (Docker Engine) Insufficiently restricted permissions on data directory
GHSA-3fwx-pjgw-3558 CVE-2021-41091 MODERATE published over 2 years ago • updated about 11 hours ago
## Impact A bug was found in Moby (Docker Engine) where the data directory (typically `/var/lib/docker`) contained subdirectories with insufficien...
Moby (Docker Engine) started with non-empty inheritable Linux process capabilities
GHSA-2mm7-x5h6-5pvq CVE-2022-24769 MODERATE published about 2 years ago • updated about 4 hours ago
### Impact A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities...
View all 13 advisories
Recent PRs
RSS Feed
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.3.1+incompatible

officialmofabs/coder #332

28.2.2+incompatible → 28.3.1+incompatible Minor PR
Open 11 months ago 1 comment
officialmofabs
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.3.1+incompatible

officialmofabs/codeserver #332

28.2.2+incompatible → 28.3.1+incompatible Minor PR
Closed 11 months ago 1 comment
officialmofabs
chore: bump github.com/moby/moby from 25.0.2+incompatible to 28.3.1+incompatible

Txim0520/https-github.com-coder-coder #612

25.0.2+incompatible → 28.3.1+incompatible Major PR
Closed 11 months ago 1 comment
Txim0520
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.3.1+incompatible

onchainengineering/hmi-wirtual #247

27.3.1+incompatible → 28.3.1+incompatible Major PR
Closed 11 months ago 1 comment
onchainengineering
chore: bump github.com/moby/moby from 28.0.0+incompatible to 28.3.1+incompatible

ongood/coder #1074

28.0.0+incompatible → 28.3.1+incompatible Minor PR
Closed 11 months ago 1 comment
ongood
chore: bump github.com/moby/moby from 27.1.1+incompatible to 28.3.1+incompatible

kehanzhang/athens-coder #562

27.1.1+incompatible → 28.3.1+incompatible Major PR
Closed 11 months ago 1 comment
kehanzhang
chore(deps): Bump github.com/moby/moby from 27.5.1+incompatible to 28.3.1+incompatible in /test/docker-e2e

celestiaorg/celestia-app #5164

27.5.1+incompatible → 28.3.1+incompatible Major PR
Closed 11 months ago 1 comment
celestiaorg
Bump the all group across 1 directory with 8 updates

dependabot/cli #477

28.3.0+incompatible → 28.3.1+incompatible Patch PR
Closed 11 months ago 1 comment
dependabot
Bump github.com/moby/moby from 28.3.0+incompatible to 28.3.1+incompatible in /examples/go

jakecoffman/auto-merge #608

28.3.0+incompatible → 28.3.1+incompatible Patch PR
Open 11 months ago
jakecoffman
chore(deps): bump github.com/moby/moby from 27.5.1+incompatible to 28.3.1+incompatible in /e2e

cosmos/ibc-go #8570

27.5.1+incompatible → 28.3.1+incompatible Major PR
Open 11 months ago
cosmos
deps: bump github.com/moby/moby from 28.3.0+incompatible to 28.3.1+incompatible

0xB1a60/runapp #29

28.3.0+incompatible → 28.3.1+incompatible Patch PR
Merged 11 months ago
0xB1a60
go: bump the docker group across 2 directories with 3 updates

inspektor-gadget/inspektor-gadget #4681

28.3.0+incompatible → 28.3.1+incompatible Patch PR
Open 11 months ago
inspektor-gadget
build(deps): bump the dependencies group with 4 updates

Scalingo/go-plugins-helpers #77

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Open 11 months ago
Scalingo
chore(deps): bump the dependencies group with 10 updates

Scalingo/sand #301

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Open 11 months ago
Scalingo
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.3.0+incompatible

officialmofabs/coder #325

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Closed 11 months ago 2 comments
officialmofabs
chore: bump github.com/moby/moby from 27.1.1+incompatible to 28.3.0+incompatible

kehanzhang/athens-coder #538

27.1.1+incompatible → 28.3.0+incompatible Major PR
Closed 11 months ago 1 comment
kehanzhang
chore: bump github.com/moby/moby from 28.0.0+incompatible to 28.3.0+incompatible

ongood/coder #1064

28.0.0+incompatible → 28.3.0+incompatible Minor PR
Closed 11 months ago 1 comment
ongood
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.3.0+incompatible

coder/coder #18660

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Merged 11 months ago
coder
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.3.0+incompatible

coutureb/coder #4

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Open 12 months ago
coutureb
chore: bump github.com/moby/moby from 28.2.2+incompatible to 28.3.0+incompatible

coutureb/coder #5

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Open 12 months ago
coutureb
Bump github.com/moby/moby from 28.2.2+incompatible to 28.3.0+incompatible in /examples/go

jakecoffman/auto-merge #592

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Open 12 months ago
jakecoffman
chore(deps): bump github.com/moby/moby from 27.5.1+incompatible to 28.3.0+incompatible in /e2e

cosmos/ibc-go #8564

27.5.1+incompatible → 28.3.0+incompatible Major PR
Closed 12 months ago
cosmos
build(deps): Bump github.com/moby/moby from 28.1.1+incompatible to 28.3.0+incompatible

runfinch/finch-daemon #272

28.1.1+incompatible → 28.3.0+incompatible Minor PR
Open 12 months ago
runfinch
go: bump the docker group across 2 directories with 3 updates

eiffel-fl/inspektor-gadget #306

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Open 12 months ago
eiffel-fl
go: bump the docker group across 2 directories with 3 updates

inspektor-gadget/inspektor-gadget #4658

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Merged 12 months ago
inspektor-gadget
Bump the all group across 1 directory with 7 updates

dependabot/cli #469

28.2.2+incompatible → 28.3.0+incompatible Minor PR
Merged 12 months ago
dependabot
Bump the go_modules group across 41 directories with 4 updates

Manny27nyc/gitpod #274

20.10.7+incompatible → 26.1.0+incompatible Major PR
Open 12 months ago
Manny27nyc
chore(deps): bump github.com/moby/moby from 27.5.1+incompatible to 28.2.2+incompatible in /e2e

cosmos/ibc-go #8544

27.5.1+incompatible → 28.2.2+incompatible Major PR
Closed 12 months ago 1 comment
cosmos
chore(deps): bump the go_modules group across 12 directories with 9 updates

offsoc/cds #4

26.1.5+incompatible → 28.2.2+incompatible Major PR
Open 12 months ago
offsoc
chore(deps): bump the go_modules group across 12 directories with 10 updates

offsoc/cds #3

25.0.3+incompatible → 26.1.0+incompatible Major PR
Closed 12 months ago 1 comment
offsoc
build(deps): Bump github.com/moby/moby from 28.1.1+incompatible to 28.2.2+incompatible

runfinch/finch-daemon #258

28.1.1+incompatible → 28.2.2+incompatible Minor PR
Open about 1 year ago
runfinch
deps: bump github.com/moby/moby from 28.2.1+incompatible to 28.2.2+incompatible

0xB1a60/runapp #24

28.2.1+incompatible → 28.2.2+incompatible Patch PR
Merged about 1 year ago
0xB1a60
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.2.2+incompatible

onchainengineering/hmi-computer #206

27.3.1+incompatible → 28.2.2+incompatible Major PR
Closed about 1 year ago
onchainengineering
chore: bump github.com/moby/moby from 27.1.1+incompatible to 28.2.2+incompatible

kehanzhang/athens-coder #514

27.1.1+incompatible → 28.2.2+incompatible Major PR
Closed about 1 year ago
kehanzhang
chore: bump github.com/moby/moby from 27.3.1+incompatible to 28.2.2+incompatible

onchainengineering/hmi-wirtual #208

27.3.1+incompatible → 28.2.2+incompatible Major PR
Closed about 1 year ago
onchainengineering
chore: bump github.com/moby/moby from 28.1.1+incompatible to 28.2.2+incompatible

officialmofabs/coder #283

28.1.1+incompatible → 28.2.2+incompatible Minor PR
Closed about 1 year ago 2 comments
officialmofabs
chore: bump github.com/moby/moby from 25.0.2+incompatible to 28.2.2+incompatible

Txim0520/https-github.com-coder-coder #572

25.0.2+incompatible → 28.2.2+incompatible Major PR
Closed about 1 year ago
Txim0520
chore: bump github.com/moby/moby from 28.0.0+incompatible to 28.2.2+incompatible

ongood/coder #1042

28.0.0+incompatible → 28.2.2+incompatible Minor PR
Closed about 1 year ago
ongood
go: bump the docker group across 2 directories with 3 updates

inspektor-gadget/inspektor-gadget #4548

28.2.1+incompatible → 28.2.2+incompatible Patch PR
Open about 1 year ago
inspektor-gadget
Bump the docker group with 3 updates

dependabot/cli #454

28.2.1+incompatible → 28.2.2+incompatible Patch PR
Merged about 1 year ago
dependabot
build(deps): bump the all group across 1 directory with 19 updates

SherfeyInv/brew #126

27.3.1+incompatible → 28.2.2+incompatible Major PR
Open about 1 year ago 2 comments
SherfeyInv
build(deps): bump the dependencies group with 2 updates

Scalingo/go-plugins-helpers #71

28.1.1+incompatible → 28.2.2+incompatible Minor PR
Open about 1 year ago 1 comment
Scalingo
chore(deps): bump github.com/moby/moby from 27.1.1+incompatible to 28.2.2+incompatible

ninech/nctl #231

27.1.1+incompatible → 28.2.2+incompatible Major PR
Open about 1 year ago
ninech
chore(deps): bump github.com/moby/moby from 27.5.1+incompatible to 28.2.2+incompatible

strangelove-ventures/interchaintest #1369

27.5.1+incompatible → 28.2.2+incompatible Major PR
Closed about 1 year ago 2 comments
strangelove-ventures
chore(deps): bump the dependencies group with 11 updates

Scalingo/sand #297

28.1.1+incompatible → 28.2.2+incompatible Minor PR
Open about 1 year ago
Scalingo
Bump github.com/moby/moby from 28.2.1+incompatible to 28.2.2+incompatible in /examples/go

jakecoffman/auto-merge #573

28.2.1+incompatible → 28.2.2+incompatible Patch PR
Open about 1 year ago
jakecoffman
Bump github.com/moby/moby from 28.2.0+incompatible to 28.2.1+incompatible in /examples/go

jakecoffman/auto-merge #564

28.2.0+incompatible → 28.2.1+incompatible Patch PR
Merged about 1 year ago
jakecoffman
Bump the docker group with 3 updates

dependabot/cli #448

28.1.1+incompatible → 28.2.1+incompatible Minor PR
Open about 1 year ago
dependabot
Bump the all group across 1 directory with 11 updates

dependabot/cli #447

28.1.1+incompatible → 28.2.1+incompatible Minor PR
Closed about 1 year ago
dependabot
deps: bump github.com/moby/moby from 28.1.1+incompatible to 28.2.1+incompatible

0xB1a60/runapp #22

28.1.1+incompatible → 28.2.1+incompatible Minor PR
Open about 1 year ago
0xB1a60
Package Details
Name: github.com/moby/moby
Ecosystem: go
PURL Type: golang
Package URL: pkg:golang/github.com/moby/moby
JSON API: View JSON
Security Advisories

13

Active advisories
HIGH 4
MODERATE 9
View All golang Advisories
Package Information
Description:

Repository: https://github.com/moby/moby
Homepage: https://github.com/moby/moby
Latest Release: v27.3.1+incompatible
over 1 year ago
Dependent Repos: 1,657
Dependent Packages: 461
Ranking: Top 0.1951% by dependent repos Top 0.1978% by dependent pkgs
PR Status
Open 75 (44.9%)
Merged 20 (12.0%)
Closed 66 (39.5%)
PR Types
Major 54 (32.3%)
Minor 75 (44.9%)
Patch 32 (19.2%)