Is github.com/imgproxy/imgproxy safe to use?

github.com/imgproxy/imgproxy has 4 known vulnerabilities on the latest version (v1.1.8). DepScope rates its health at 82/100 (low risk).

What is the latest version of github.com/imgproxy/imgproxy?

The latest version of github.com/imgproxy/imgproxy is v1.1.8, released 2018-10-01.

Does github.com/imgproxy/imgproxy have known vulnerabilities?

Yes. github.com/imgproxy/imgproxy has 4 known vulnerabilities. See depscope.dev/pkg/go/github.com/imgproxy/imgproxy for details.

Is github.com/imgproxy/imgproxy deprecated?

No, github.com/imgproxy/imgproxy is actively maintained. Latest release: v1.1.8 (2018-10-01).

What are alternatives to github.com/imgproxy/imgproxy?

DepScope has no curated alternatives for github.com/imgproxy/imgproxy at this time.

What license does github.com/imgproxy/imgproxy use?

github.com/imgproxy/imgproxy is licensed under MIT.

github.com/imgproxy/imgproxy

govv1.1.8

Fast and secure standalone server for resizing, processing, and converting images on the fly

License MITpermissive30 versions113 maintainers0 deps10,690 weekly dl

imgproxy/imgproxy

/ 100

Health

safe to use

github.com/imgproxy/[email protected] is safe to use (health: 82/100)

Update to >= 3.27.2 to fix known vulnerabilities

Health breakdown0 – 100

25/25

maintenance

10/20

popularity

23/25

security

12/15

maturity

12/15

community

Vulnerabilities

1 medium3 low

Advisories (4)

Severity	ID	Summary	Fixed in
medium	CVE-2025-24354	imgproxy is vulnerable to SSRF against 0.0.0.0	3.27.2
unknown	CVE-2023-1496	imgproxy Cross-site Scripting vulnerability in github.com/imgproxy/imgproxy	3.14.0
unknown	CVE-2023-30019	imgproxy is vulnerable to Server-Side Request Forgery in github.com/imgproxy/imgproxy	3.15.0
unknown	CVE-2025-24354	imgproxy is vulnerable to SSRF against 0.0.0.0 in github.com/imgproxy/imgproxy	3.27.2

Threat intelligence

1 likely exploited (EPSS ≥ 0.5)

Threat tier per vulnerability derived from CISA KEV catalog + FIRST.org EPSS scores.

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/go/github.com/imgproxy/imgproxy

Last updated · 2018-10-01T15:05:46Z

github.com/imgproxy/imgproxy

govv1.1.8

Fast and secure standalone server for resizing, processing, and converting images on the fly

License MITpermissive30 versions113 maintainers0 deps10,690 weekly dl

imgproxy/imgproxy

/ 100

Health

safe to use

github.com/imgproxy/[email protected] is safe to use (health: 82/100)

Update to >= 3.27.2 to fix known vulnerabilities

Health breakdown0 – 100

25/25

maintenance

10/20

popularity

23/25

security

12/15

maturity

12/15

community

Vulnerabilities

1 medium3 low

Advisories (4)

Severity	ID	Summary	Fixed in
medium	CVE-2025-24354	imgproxy is vulnerable to SSRF against 0.0.0.0	3.27.2
unknown	CVE-2023-1496	imgproxy Cross-site Scripting vulnerability in github.com/imgproxy/imgproxy	3.14.0
unknown	CVE-2023-30019	imgproxy is vulnerable to Server-Side Request Forgery in github.com/imgproxy/imgproxy	3.15.0
unknown	CVE-2025-24354	imgproxy is vulnerable to SSRF against 0.0.0.0 in github.com/imgproxy/imgproxy	3.27.2

Threat intelligence

1 likely exploited (EPSS ≥ 0.5)

Threat tier per vulnerability derived from CISA KEV catalog + FIRST.org EPSS scores.

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/go/github.com/imgproxy/imgproxy

Last updated · 2018-10-01T15:05:46Z