Skip to content

Instantly share code, notes, and snippets.

@dlorenc
Created December 31, 2020 16:32
Show Gist options
  • Save dlorenc/f1593353ad4842c12766fb8d04f4a3d4 to your computer and use it in GitHub Desktop.
Save dlorenc/f1593353ad4842c12766fb8d04f4a3d4 to your computer and use it in GitHub Desktop.
$ snyk test --file=go.mod
✗ Medium severity vulnerability found in github.com/grafana/grafana
Description: Cross-site Scripting (XSS)
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGRAFANAGRAFANA-570944
Introduced through: github.com/grafana/grafana@0.0.0
From: github.com/grafana/grafana@0.0.0
Fixed in: 6.0.0-beta1
✗ Medium severity vulnerability found in github.com/grafana/grafana
Description: Cross-site Scripting (XSS)
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGRAFANAGRAFANA-570945
Introduced through: github.com/grafana/grafana@0.0.0
From: github.com/grafana/grafana@0.0.0
Fixed in: 6.0.0-beta1
✗ Medium severity vulnerability found in github.com/grafana/grafana
Description: Cross-site Scripting (XSS)
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGRAFANAGRAFANA-72290
Introduced through: github.com/grafana/grafana@0.0.0
From: github.com/grafana/grafana@0.0.0
Fixed in: 5.2.0-beta1
✗ Medium severity vulnerability found in github.com/grafana/grafana
Description: Cross-site Scripting (XSS)
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGRAFANAGRAFANA-72632
Introduced through: github.com/grafana/grafana@0.0.0
From: github.com/grafana/grafana@0.0.0
Fixed in: 5.3.2
✗ High severity vulnerability found in github.com/russellhaering/goxmldsig
Description: Signature Validation Bypass
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMRUSSELLHAERINGGOXMLDSIG-1014528
Introduced through: github.com/crewjam/saml@0.4.1
From: github.com/crewjam/saml@0.4.1 > github.com/russellhaering/goxmldsig@#2e1fbc2c5593
Fixed in: 1.1.0
✗ High severity vulnerability found in github.com/grafana/grafana
Description: Cross-site Scripting (XSS)
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGRAFANAGRAFANA-838968
Introduced through: github.com/grafana/grafana@0.0.0
From: github.com/grafana/grafana@0.0.0
Fixed in: 7.2.0-beta2
✗ High severity vulnerability found in github.com/crewjam/saml
Description: Authentication Bypass
Info: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMCREWJAMSAML-1052715
Introduced through: github.com/crewjam/saml@0.4.1
From: github.com/crewjam/saml@0.4.1
Fixed in: 0.4.3
Tested 437 dependencies for known issues, found 7 issues, 7 vulnerable paths.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment