Is github.com/weaveworks/weave safe to use?

github.com/weaveworks/weave has 2 known vulnerabilities on the latest version (v1.9.8). DepScope rates its health at 44/100 (high risk).

What is the latest version of github.com/weaveworks/weave?

The latest version of github.com/weaveworks/weave is v1.9.8, released 2017-06-15.

Yes. github.com/weaveworks/weave has 2 known vulnerabilities. See depscope.dev/pkg/go/github.com/weaveworks/weave for details.

No, github.com/weaveworks/weave is actively maintained. Latest release: v1.9.8 (2017-06-15).

DepScope has no curated alternatives for github.com/weaveworks/weave at this time.

github.com/weaveworks/weave is licensed under Apache-2.0.

govv1.9.8

Simple, resilient multi-host containers networking and more.

License Apache-2.0permissive70 versions106 maintainers0 deps6,618 weekly dl

/ 100

Health

safe to use

github.com/weaveworks/[email protected] is safe to use (health: 44/100)

Update to >= 2.6.3+incompatible to fix known vulnerabilities

Health breakdown0 – 100

0/25

maintenance

6/20

popularity

23/25

security

15/15

maturity

0/15

community

Vulnerabilities

1 medium1 low

Advisories (2)

Severity	ID	Summary	Fixed in
medium	CVE-2020-11091	Weave Net clusters susceptible to MitM attacks via IPv6 rogue router advertisements	2.6.3
unknown	CVE-2020-11091	Weave Net clusters susceptible to MitM attacks via IPv6 rogue router advertisements in github.com/weaveworks/weave	2.6.3+incompatible

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/go/github.com/weaveworks/weave

Last updated · 2017-06-15T17:05:11Z