depscope
Packages
IntegrateAPI DocsCuratorBenchmarkCoverage
Sign inGet API access
depscope/go/github.com/dexidp/dex

github.com/dexidp/dex

govv0.6.1

OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors

License Apache-2.0permissive45 versions300 maintainers0 deps10,785 weekly dl
dexidp/dex
40
/ 100
Health
do not use

github.com/dexidp/dex has critical vulnerabilities — do not use

Update to >= 2.35.0 to fix known vulnerabilities

  • Moderate health score (40/100) — verify manually
  • 1 high severity vulnerabilities
  • 3 critical vulnerabilities
Health breakdown0 – 100
25/25
maintenance
10/20
popularity
0/25
security
12/15
maturity
13/15
community
Vulnerabilities
5
3 critical1 high1 low
Advisories (5)
SeverityIDSummaryFixed in
criticalCVE-2020-27847Authentication Bypass in dex2.27.0
highCVE-2024-23656Dex discarding TLSconfig and always serves deprecated TLS 1.0/1.1 and insecure ciphers0.0.0-20240125115555-5bbdb4420254
criticalCVE-2020-26290Critical security issues in XML encoding in github.com/dexidp/dex1.1.0
criticalCVE-2022-39222Dex vulnerable to Man-in-the-Middle allowing ID token capture via intercepted authorization code2.35.0
unknownCVE-2024-23656Dex discarding TLSconfig and always serves deprecated TLS 1.0/1.1 and insecure ciphers in github.com/dexidp/dex—

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/go/github.com/dexidp/dex

Last updated · 2016-09-29T22:48:30Z

DepScope

Package intelligence for AI agents. 19 ecosystems.

Resources
API DocumentationHallucination BenchmarkFor EnterpriseSwagger / OpenAPIPopular PackagesCoverageAI Plugin SetupWatch the pitch (60s)
Legal
Legal hubPrivacy PolicyTerms of ServiceCookie PolicyAcceptable UseAttributionDPASub-processorsSecurityImprintContact中文
© 2026 Cuttalo srl — Italy · VAT IT03242390734Built for AI agents