Affected by GO-2022-1000 and 4 other vulnerabilities

GO-2022-1000: KubeVirt vulnerable to arbitrary file read on host in kubevirt.io/kubevirt

GO-2024-2688: KubeVirt NULL pointer dereference flaw in kubevirt.io/kubevirt

GO-2024-2756: Privilege Escalation in kubevirt in kubevirt.io/kubevirt

GO-2024-2765: Permissions bypass in KubeVirt in kubevirt.io/kubevirt

GO-2024-2816: kubevirt allows a local attacker to execute arbitrary code via a crafted command in kubevirt.io/kubevirt

staging/

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubevirt/kubevirt

Links

Open Source Insights

README ¶

= Staging Directory =

This directory contains golang packages which should either be outsourced into their own repositories on the long run, or which replace existing vendor depencencies.

glog: A structured logging based reimplementation of glog for internal use.

Directories ¶

Path	Synopsis
glog This package reimplements github.com/golang/glog and logs to a structured logger.	This package reimplements github.com/golang/glog and logs to a structured logger.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL