{"package":"github.com/stefanprodan/podinfo","ecosystem":"go","latest_version":"v1.8.0","description":"Go microservice template for Kubernetes","license":"MIT","license_risk":"permissive","commercial_use_notes":"Permissive: commercial closed-source use OK; preserve the copyright notice.","homepage":"https://pkg.go.dev/github.com/stefanprodan/podinfo","repository":"https://github.com/stefanprodan/podinfo","downloads_weekly":5893,"health":{"score":45,"risk":"high","breakdown":{"maintenance":0,"popularity":6,"security":25,"maturity":9,"community":5},"deprecated":false,"max_score":100},"vulnerabilities":{"count":2,"critical":0,"high":0,"medium":0,"low":2,"details":[{"vuln_id":"CVE-2025-70849","severity":"low","summary":"Podinfo affected by Arbitrary File Upload that leads to Stored Cross-Site Scripting (XSS)","affected_versions":"<1.8.1-0.20260314125853-83deb7fcb742","fixed_version":"1.8.1-0.20260314125853-83deb7fcb742","source":"osv","published_at":"2026-02-03T18:30:47Z","in_kev":false,"epss_prob":0.00016,"epss_percentile":0.0383,"threat_tier":"theoretical"},{"vuln_id":"CVE-2025-70849","severity":"unknown","summary":"Podinfo affected by Arbitrary File Upload that leads to Stored Cross-Site Scripting (XSS) in github.com/stefanprodan/podinfo","affected_versions":null,"fixed_version":null,"source":"osv","published_at":"2026-02-05T03:20:45Z","in_kev":false,"epss_prob":0.00016,"epss_percentile":0.0383,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"v1.8.0","total_count":15,"recent":["v1.3.0","v1.7.0","v1.8.0","v1.6.0","v1.4.2","v1.0.0","v0.5.0","v1.1.1","v1.3.1","v1.4.1","v0.4.0","v1.2.1","v1.4.0","v1.2.0","v1.1.0"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":65,"first_published":null,"last_published":"2019-08-05T07:00:23Z","dependencies_count":0,"dependencies":[]},"github_stats":null,"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"safe_to_use","issues":[],"use_version":"v1.8.0","version_hint":"Update to >= 1.8.1-0.20260314125853-83deb7fcb742 to fix known vulnerabilities","summary":"github.com/stefanprodan/podinfo@v1.8.0 is safe to use (health: 45/100)"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":792,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":15,"first_release_age_days":2857,"last_release_days_ago":2461,"avg_days_between_releases":204,"release_velocity":"stale"}}