commercial-expanso-edgepackaged by Chainguard
packaged by Chainguard
Last changed
Request a free trial
Contact our team to test out this image for free. Please also indicate any other images you would like to evaluate.
Tag:
Severity:All
Expand | CVE ID | Severity | Package | Version | Last detected |
|---|---|---|---|---|---|
CVE-2026-33186 | Critical | google.golang.org/grpc | v1.79.2 | ||
CVE-2026-33816 | Critical | github.com/jackc/pgx/v5 | v5.7.6 | ||
CVE-2026-27143 | Critical | stdlib | go1.25.8 | ||
CVE-2026-39836 | High | stdlib | go1.25.8 | ||
CVE-2026-39883 | High | go.opentelemetry.io/otel/sdk | v1.42.0 | ||
CVE-2026-42501 | High | stdlib | go1.25.8 | ||
CVE-2026-32283 | High | stdlib | go1.25.8 | ||
CVE-2026-34986 | High | github.com/go-jose/go-jose/v3 | v3.0.4 | ||
CVE-2026-42499 | High | stdlib | go1.25.8 | ||
CVE-2026-27140 | High | stdlib | go1.25.8 | ||
CVE-2026-33811 | High | stdlib | go1.25.8 | ||
CVE-2026-39820 | High | stdlib | go1.25.8 | ||
CVE-2026-34986 | High | github.com/go-jose/go-jose/v4 | v4.1.3 | ||
CVE-2026-32280 | High | stdlib | go1.25.8 | ||
CVE-2026-41602 | High | github.com/apache/thrift | v0.22.0 | ||
CVE-2026-32281 | High | stdlib | go1.25.8 | ||
CVE-2026-27144 | High | stdlib | go1.25.8 | ||
CVE-2026-33814 | High | stdlib | go1.25.8 | ||
CVE-2026-39823 | Medium | stdlib | go1.25.8 | ||
CVE-2026-39826 | Medium | stdlib | go1.25.8 | ||
CVE-2026-39882 | Medium | go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp | v0.18.0 | ||
CVE-2026-39882 | Medium | go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp | v1.42.0 | ||
CVE-2026-32289 | Medium | stdlib | go1.25.8 | ||
CVE-2026-39817 | Medium | stdlib | go1.25.8 | ||
CVE-2026-32288 | Medium | stdlib | go1.25.8 | ||
GHSA-xmrv-pmrh-hhx2 | Medium | github.com/aws/aws-sdk-go-v2/service/s3 | v1.88.4 | ||
CVE-2026-39819 | Medium | stdlib | go1.25.8 | ||
GHSA-xmrv-pmrh-hhx2 | Medium | github.com/aws/aws-sdk-go-v2/service/kinesis | v1.40.5 | ||
CVE-2026-39825 | Medium | stdlib | go1.25.8 | ||
GHSA-xmrv-pmrh-hhx2 | Medium | github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream | v1.7.1 | ||
GHSA-xmrv-pmrh-hhx2 | Medium | github.com/aws/aws-sdk-go-v2/service/bedrockruntime | v1.41.0 | ||
GHSA-xmrv-pmrh-hhx2 | Medium | github.com/aws/aws-sdk-go-v2/service/lambda | v1.78.0 | ||
CVE-2026-32282 | Medium | stdlib | go1.25.8 | ||
CVE-2026-41889 | Low | github.com/jackc/pgx/v5 | v5.7.6 | ||
CVE-2026-26995 | Low | github.com/refraction-networking/utls | v1.8.1 |
Last updated:
The trusted source for open source
Talk to an expertProduct
Customers
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.