Snyk - Open Source Security

Snyk test report

October 29th 2023, 12:14:38 am (UTC+00:00)

Scanned the following paths:
  • /argo-cd/argoproj/argo-cd/v2 (gomodules)
  • /argo-cd (yarn)
6 known vulnerabilities
19 vulnerable dependency paths
1965 dependencies

LGPL-3.0 license

medium severity

  • Package Manager: golang
  • Module: gopkg.in/retry.v1
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0, github.com/Azure/kubelogin/pkg/token@0.0.20 and others

Detailed paths

  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/Azure/kubelogin/pkg/token@0.0.20 gopkg.in/retry.v1@1.0.3

LGPL-3.0 license


MPL-2.0 license

medium severity

  • Package Manager: golang
  • Module: github.com/r3labs/diff
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 and github.com/r3labs/diff@1.1.0

Detailed paths

  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/r3labs/diff@1.1.0

MPL-2.0 license


MPL-2.0 license

medium severity

  • Package Manager: golang
  • Module: github.com/hashicorp/go-version
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0, code.gitea.io/sdk/gitea@0.15.1 and others

Detailed paths

  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 code.gitea.io/sdk/gitea@0.15.1 github.com/hashicorp/go-version@1.2.1

MPL-2.0 license


MPL-2.0 license

medium severity

  • Package Manager: golang
  • Module: github.com/hashicorp/go-retryablehttp
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 and github.com/hashicorp/go-retryablehttp@0.7.4

Detailed paths

  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/hashicorp/go-retryablehttp@0.7.4
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/xanzy/go-gitlab@0.91.1 github.com/hashicorp/go-retryablehttp@0.7.4
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/cmd@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/api@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/controller@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4

MPL-2.0 license


MPL-2.0 license

medium severity

  • Package Manager: golang
  • Module: github.com/hashicorp/go-cleanhttp
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0, github.com/hashicorp/go-retryablehttp@0.7.4 and others

Detailed paths

  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/xanzy/go-gitlab@0.91.1 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/xanzy/go-gitlab@0.91.1 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/cmd@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/api@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/argoproj/notifications-engine/pkg/controller@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 github.com/hashicorp/go-retryablehttp@0.7.4 github.com/hashicorp/go-cleanhttp@0.5.2

MPL-2.0 license


MPL-2.0 license

medium severity

  • Package Manager: golang
  • Module: github.com/gosimple/slug
  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 and github.com/gosimple/slug@1.13.1

Detailed paths

  • Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 github.com/gosimple/slug@1.13.1

MPL-2.0 license