`github.com/open-policy-agent/opa`

Ecosystem:
go

Package URL:
pkg:golang/github.com/open-policy-agent/opa

Total PRs:
950 Dependabot PRs

Latest PR:
6 days ago

Unique Repositories:
250 repositories

Unique Repos (30 days):
13 repositories

Security Advisories

OPA server Data API HTTP path injection of Rego

GHSA-6m8w-jc87-6cr7 CVE-2025-46569 HIGH published about 1 year ago • updated about 6 hours ago

### Impact When run as a server, OPA exposes an HTTP[ Data API](https://www.openpolicyagent.org/docs/latest/rest-api/#data-api) for reading and wr...

Denial of service in Open Policy Agent

GHSA-2m4x-4q9j-w97g CVE-2022-33082 HIGH published almost 4 years ago • updated 26 days ago

An issue in the AST parser (ast/compile.go) of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service (DoS) via a crafted input.

OPA Compiler: Bypass of WithUnsafeBuiltins using "with" keyword to mock functions

GHSA-f524-rf33-2jjr CVE-2022-36085 HIGH published over 3 years ago • updated 1 day ago

### Impact The Rego compiler provides a (deprecated) `WithUnsafeBuiltins` function, which allows users to provide a set of built-in functions that...

OPA for Windows has an SMB force-authentication vulnerability

GHSA-c77r-fh37-x2px CVE-2024-8260 MODERATE published almost 2 years ago • updated about 1 month ago

A SMB force-authentication vulnerability exists in all versions of OPA for Windows prior to v0.68.0. The vulnerability exists because of improper i...

Incorrect Calculation in github.com/open-policy-agent/opa

GHSA-hcw3-j74m-qc58 CVE-2022-23628 MODERATE published over 4 years ago • updated 8 days ago

### Impact Under certain conditions, pretty-printing an AST that contains synthetic nodes could change the logic of some statements by reordering ...

View all 6 advisories

Recent PRs

RSS Feed

deps(deps): Bump github.com/open-policy-agent/opa from 1.16.2 to 1.17.0

higakikeita/tfdrift-falco #226

1.16.2 → 1.17.0 Minor PR

Open 6 days ago 4 comments

fix(deps): bump the external group across 1 directory with 24 updates

opentdf/platform #3561

1.5.1 → 1.17.0 Minor PR

Open 6 days ago 3 comments

chore(deps)(deps): bump the patch-and-minor group across 1 directory with 6 updates

skillledger/skillledger #24

1.15.2 → 1.17.0 Minor PR

Closed 8 days ago 2 comments

chore(deps): bump github.com/open-policy-agent/opa from 1.16.2 to 1.17.0

MemerGamer/devsecops-attestation #19

1.16.2 → 1.17.0 Minor PR

Closed 10 days ago 1 comment

chore(deps): bump the common group across 1 directory with 31 updates

ScorpionBytes/trivy #36

1.15.2 → 1.16.2 Minor PR

Closed 17 days ago 1 comment

chore(deps): bump the common group across 1 directory with 22 updates

aquasecurity/trivy #10717

1.15.2 → 1.16.2 Minor PR

Closed 18 days ago 6 comments

build(deps): bump the minor-and-patch group with 31 updates

ddelange/ocis #2350

1.12.3 → 1.16.2 Minor PR

Closed 20 days ago 1 comment

chore: bump github.com/open-policy-agent/opa from 1.3.0 to 1.16.2

coder-contrib/coder #167

1.3.0 → 1.16.2 Minor PR

Closed 20 days ago 1 comment

deps(deps): bump github.com/open-policy-agent/opa from 1.4.0 to 1.16.2

mgoodric/security-atlas #306

1.4.0 → 1.16.2 Minor PR

Open 21 days ago 6 comments

chore(deps)(deps): bump the patch-and-minor group across 1 directory with 5 updates

skillledger/skillledger #21

1.15.2 → 1.16.2 Minor PR

Closed 22 days ago 2 comments

Bump github.com/open-policy-agent/opa from 0.70.0 to 1.16.2

microsoft/hcsshim #2741

0.70.0 → 1.16.2 Major PR

Closed 23 days ago 1 comment

chore(deps): bump the common group across 1 directory with 29 updates

ScorpionBytes/trivy #32

1.15.2 → 1.16.1 Minor PR

Closed 24 days ago 1 comment

chore(deps): bump the common group across 1 directory with 19 updates

aquasecurity/trivy #10651

1.15.2 → 1.16.1 Minor PR

Closed 28 days ago 1 comment

chore(deps): bump github.com/open-policy-agent/opa from 1.15.2 to 1.16.1

santosr2/TerraTidy #149

1.15.2 → 1.16.1 Minor PR

Open 28 days ago 1 comment

chore: bump github.com/open-policy-agent/opa from 1.1.0 to 1.16.1

klosraf/coder #278

1.1.0 → 1.16.1 Minor PR

Closed 29 days ago 1 comment

chore: bump github.com/open-policy-agent/opa from 0.58.0 to 1.16.1

Txim0520/https-github.com-coder-coder #979

0.58.0 → 1.16.1 Major PR

Closed 29 days ago 1 comment

fix(deps): bump the external group across 1 directory with 19 updates

opentdf/platform #3452

1.5.1 → 1.16.1 Minor PR

Open about 1 month ago 3 comments

chore(deps): bump the common group across 1 directory with 20 updates

aquasecurity/trivy #10630

1.15.2 → 1.16.0 Minor PR

Closed about 1 month ago 4 comments

deps(deps): Bump github.com/open-policy-agent/opa from 1.15.2 to 1.16.1

higakikeita/tfdrift-falco #194

1.15.2 → 1.16.1 Minor PR

Closed about 1 month ago 4 comments

fix(deps): bump the external group across 1 directory with 21 updates

opentdf/platform #3431

1.5.1 → 1.16.1 Minor PR

Open about 1 month ago 1 comment

chore(deps): bump github.com/open-policy-agent/opa from 1.15.2 to 1.16.1

kanywst/opa-authzen-plugin #44

1.15.2 → 1.16.1 Minor PR

Open about 1 month ago 1 comment

chore: bump github.com/open-policy-agent/opa from 1.15.2 to 1.16.1 in /constraint

open-policy-agent/frameworks #718

1.15.2 → 1.16.1 Minor PR

Open about 1 month ago 2 comments

Bump github.com/open-policy-agent/opa from 0.70.0 to 1.16.1

microsoft/hcsshim #2717

0.70.0 → 1.16.1 Major PR

Closed about 1 month ago 1 comment

fix(deps): bump the external group across 1 directory with 19 updates

opentdf/platform #3375

1.5.1 → 1.15.2 Minor PR

Open about 2 months ago 10 comments

chore: bump the all-go-mod group across 1 directory with 2 updates

aflock-ai/aflock #75

1.13.1 → 1.15.2 Minor PR

Closed about 2 months ago 1 comment

chore(deps): bump the common group across 1 directory with 52 updates

xycloops123/trivy #410

1.6.0 → 1.15.2 Minor PR

Open about 2 months ago 1 comment

Bump the dependencies group across 1 directory with 6 updates

srlmgr/backend #102

1.15.1 → 1.15.2 Patch PR

Open about 2 months ago 1 comment

fix(deps): bump the external group across 1 directory with 19 updates

opentdf/platform #3314

1.5.1 → 1.15.2 Minor PR

Open about 2 months ago 5 comments

chore(deps): bump the common group across 1 directory with 10 updates

aquasecurity/trivy #10532

1.14.1 → 1.15.1 Minor PR

Closed about 2 months ago 7 comments

fix(deps): bump the external group across 1 directory with 18 updates

opentdf/platform #3302

1.5.1 → 1.15.2 Minor PR

Open about 2 months ago 8 comments

chore(deps): bump the common group across 1 directory with 11 updates

aquasecurity/trivy #10503

1.14.1 → 1.15.1 Minor PR

Closed 2 months ago 1 comment

Bump github.com/open-policy-agent/opa from 1.15.1 to 1.15.2 in /pricer

shortlink-org/shop #929

1.15.1 → 1.15.2 Patch PR

Closed 2 months ago 1 comment

fix(deps): bump the external group across 1 directory with 24 updates

opentdf/platform #3259

1.5.1 → 1.15.1 Minor PR

Open 2 months ago 12 comments

chore(deps): bump the common group with 7 updates

ScorpionBytes/trivy #6

1.14.1 → 1.15.0 Minor PR

Closed 2 months ago 1 comment

NO-ISSUE: Bump the go-dependencies group with 3 updates

osac-project/fulfillment-service #374

1.14.1 → 1.15.1 Minor PR

Open 2 months ago 2 comments

fix(deps): bump the external group across 1 directory with 26 updates

opentdf/platform #3250

1.5.1 → 1.15.1 Minor PR

Open 2 months ago 3 comments

chore(deps): bump github.com/open-policy-agent/opa from 0.40.0 to 1.15.1

project-zot/trivy #485

0.40.0 → 1.15.1 Major PR

Closed 2 months ago 1 comment

build(deps): bump the build group across 1 directory with 56 updates

open-policy-agent/eopa #360

1.12.1 → 1.15.1 Minor PR

Open 2 months ago 1 comment

chore: bump github.com/open-policy-agent/opa from 1.1.0 to 1.15.1

klosraf/coder #232

1.1.0 → 1.15.1 Minor PR

Closed 2 months ago 1 comment

build(deps): bump github.com/open-policy-agent/opa from 1.14.1 to 1.15.0

opencloud-eu/opencloud #2535

1.14.1 → 1.15.0 Minor PR

Open 2 months ago 1 comment

build(deps): bump the project-dependency group across 1 directory with 13 updates

runfinch/finch-daemon #433

1.12.1 → 1.14.1 Minor PR

Closed 3 months ago 1 comment

[gomod] Bump the dependencies group across 3 directories with 18 updates

open-edge-platform/infra-core #943

1.14.0 → 1.14.1 Patch PR

Closed 3 months ago 1 comment

chore(deps): bump the common group across 1 directory with 26 updates

Ericsson/trivy #248

1.13.1 → 1.14.1 Minor PR

Closed 3 months ago 1 comment

chore: bump the all-go-mod group with 2 updates

in-toto/witness #740

1.14.0 → 1.14.1 Patch PR

Open 3 months ago 1 comment

chore(deps): bump the common group across 1 directory with 49 updates

xycloops123/trivy #397

1.6.0 → 1.14.1 Minor PR

Closed 3 months ago 3 comments

chore: bump github.com/open-policy-agent/opa from 1.3.0 to 1.14.1

coder-contrib/coder #93

1.3.0 → 1.14.1 Minor PR

Closed 3 months ago 1 comment

deps(deps): bump github.com/open-policy-agent/opa from 1.12.3 to 1.14.1

SigComply/sigcomply-cli #22

1.12.3 → 1.14.1 Minor PR

Open 3 months ago 4 comments

chore(deps): bump the common group across 1 directory with 48 updates

xycloops123/trivy #396

1.6.0 → 1.14.0 Minor PR

Closed 3 months ago 3 comments

chore(deps): bump the common group with 2 updates

aquasecurity/trivy-checks #542

1.13.2 → 1.14.0 Minor PR

Open 3 months ago 1 comment

chore: bump github.com/open-policy-agent/opa from 0.67.0 to 1.14.0

kehanzhang/athens-coder #792

0.67.0 → 1.14.0 Major PR

Closed 3 months ago 1 comment

Package Details

Name:	`github.com/open-policy-agent/opa`
Ecosystem:	go
PURL Type:	golang
Package URL:	`pkg:golang/github.com/open-policy-agent/opa`
JSON API:	View JSON

Security Advisories

6

Active advisories

HIGH 4

MODERATE 2

View All golang Advisories

Package Information

Description:

Repository:	https://github.com/open-policy-agent/opa
Homepage:	https://github.com/open-policy-agent/opa
Latest Release:	`v0.68.0` almost 2 years ago
Dependent Repos:	2,039
Dependent Packages:	852
Ranking:	Top 0.1832% by dependent repos Top 0.1401% by dependent pkgs

PR Status

Open 425 (44.7%)

Merged 76 (8.0%)

Closed 369 (38.8%)

PR Types

Major 259 (27.3%)

Minor 568 (59.8%)

Patch 42 (4.4%)