github.com/argoproj/argo-workflows
govv0.4.7Workflow Engine for Kubernetes
License Apache-2.0permissive120 versions1017 maintainers0 deps16,642 weekly dl
argoproj/argo-workflows46
/ 100
Health
update required
github.com/argoproj/[email protected] has vulnerabilities — update to latest
Update to >= 4.0.2 to fix known vulnerabilities
- 3 high severity vulnerabilities
Health breakdown0 – 100
0/25
maintenance
10/20
popularity
8/25
security
15/15
maturity
13/15
community
Vulnerabilities
6
3 high1 medium2 low
Advisories (6)
| Severity | ID | Summary | Fixed in |
|---|---|---|---|
| high | BIT-argo-workflows-2026-31892 | Argo Workflows: WorkflowTemplate Security Bypass via podSpecPatch in Strict/Secure Reference Mode | 3.7.11 |
| high | BIT-argo-workflows-2026-23960 | Argo Workflows affected by stored XSS in the artifact directory listing | 3.7.8 |
| medium | GHSA-rc7p-gmvh-xfx2 | Attack on Kubernetes via Misconfigured Argo Workflows | — |
| high | BIT-argo-workflows-2025-66626 | RCE via ZipSlip and symbolic links in argoproj/argo-workflows | 3.6.14 |
| unknown | BIT-argo-workflows-2026-28229 | Unauthorized access to Argo Workflows Template in github.com/argoproj/argo-workflows | 4.0.2 |
| unknown | BIT-argo-workflows-2026-31892 | Argo Workflows: WorkflowTemplate Security Bypass via podSpecPatch in Strict/Secure Reference Mode in github.com/argoproj/argo-workflows | 4.0.2 |
Health History
Dependency Tree
License Audit
API access
Get this data programmatically — free, no authentication.
curl https://depscope.dev/api/check/go/github.com/argoproj/argo-workflowsLast updated · 2018-06-07T18:09:38Z