commit

package
Go to main page

Versions in this module

v1
v1.7.10
Apr 22, 2026
v1.7.9
Mar 2, 2026
v1.7.8
Feb 17, 2026 GO-2026-4717
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.7
Jan 26, 2026 GO-2026-4516 +1 more
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.6
Oct 16, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.5
Sep 10, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.4
Aug 26, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.3
Aug 18, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.2
Aug 7, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.1
Aug 6, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.0
Aug 5, 2025 GO-2026-4385 +2 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4516: Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
Changes in this version
v1.7.0-rc.3
Aug 5, 2025 GO-2026-4385 +1 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.0-rc.2
Aug 4, 2025 GO-2026-4385 +1 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo
v1.7.0-rc.1
Aug 1, 2025 GO-2026-4385 +1 more
Alert  GO-2026-4385: Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access in github.com/akuity/kargo
Alert  GO-2026-4717: Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration in github.com/akuity/kargo

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.