Snyk - Open Source Security
Snyk test report
September 17th 2023, 12:15:18 am (UTC+00:00)
Scanned the following paths:
/argo-cd/argoproj/argo-cd/v2 (gomodules)
/argo-cd (yarn)
5
known vulnerabilities
18 vulnerable dependency paths
1919
dependencies
MPL-2.0 license
medium severity
Package Manager: golang
Module: github.com/r3labs/diff
Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 and github.com/r3labs/diff@1.1.0
Detailed paths
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/r3labs/diff@1.1.0
MPL-2.0 license
More about this vulnerability
MPL-2.0 license
medium severity
Package Manager: golang
Module: github.com/hashicorp/go-version
Introduced through: github.com/argoproj/argo-cd/v2@0.0.0, code.gitea.io/sdk/gitea@0.15.1 and others
Detailed paths
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
code.gitea.io/sdk/gitea@0.15.1
›
github.com/hashicorp/go-version@1.2.1
MPL-2.0 license
More about this vulnerability
MPL-2.0 license
medium severity
Package Manager: golang
Module: github.com/hashicorp/go-retryablehttp
Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 and github.com/hashicorp/go-retryablehttp@0.7.4
Detailed paths
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/hashicorp/go-retryablehttp@0.7.4
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/xanzy/go-gitlab@0.91.1
›
github.com/hashicorp/go-retryablehttp@0.7.4
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/cmd@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/api@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/controller@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
MPL-2.0 license
More about this vulnerability
MPL-2.0 license
medium severity
Package Manager: golang
Module: github.com/hashicorp/go-cleanhttp
Introduced through: github.com/argoproj/argo-cd/v2@0.0.0, github.com/hashicorp/go-retryablehttp@0.7.4 and others
Detailed paths
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/xanzy/go-gitlab@0.91.1
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/xanzy/go-gitlab@0.91.1
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/cmd@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/api@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/argoproj/notifications-engine/pkg/controller@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf
›
github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf
›
github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5
›
github.com/hashicorp/go-retryablehttp@0.7.4
›
github.com/hashicorp/go-cleanhttp@0.5.2
MPL-2.0 license
More about this vulnerability
MPL-2.0 license
medium severity
Package Manager: golang
Module: github.com/gosimple/slug
Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 and github.com/gosimple/slug@1.13.1
Detailed paths
Introduced through
: github.com/argoproj/argo-cd/v2@0.0.0
›
github.com/gosimple/slug@1.13.1
MPL-2.0 license
More about this vulnerability