Affected by GO-2022-0617
and 20 other vulnerabilities
GO-2022-0617: WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes
GO-2022-0782: Symlink Attack in kubectl cp in k8s.io/kubernetes
GO-2022-0885: Improper Authentication in Kubernetes in k8s.io/kubernetes
GO-2022-0890: Server Side Request Forgery (SSRF) in Kubernetes in k8s.io/kubernetes
GO-2022-0907: Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes
GO-2022-0910: Files or Directories Accessible to External Parties in kubernetes in k8s.io/kubernetes
GO-2022-0983: kubectl ANSI escape characters not filtered in k8s.io/kubernetes
GO-2023-1864: Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes
GO-2023-1891: kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes
GO-2023-1892: Kubernetes mountable secrets policy bypass in k8s.io/kubernetes
GO-2023-1985: Kubernetes in OpenShift3 Access Control Misconfiguration in k8s.io/kubernetes
GO-2023-2159: Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes
GO-2023-2341: Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes
GO-2024-2748: Privilege Escalation in Kubernetes in k8s.io/apimachinery
GO-2024-2754: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes
GO-2024-2755: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes
GO-2024-2994: Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes
GO-2024-3277: Kubernetes Nil pointer dereference in KCM after v1 HPA patch request in k8s.io/kubernetes
GO-2025-3465: Node Denial of Service via kubelet Checkpoint API in k8s.io/kubernetes
GO-2025-3521: Kubernetes GitRepo Volume Inadvertent Local Repository Access in k8s.io/kubernetes
GO-2025-3522: Kubernetes allows Command Injection affecting Windows nodes via nodes/*/logs/query API in k8s.io/kubernetes
command
Version:
v0.12.1
Opens a new window with list of versions in this module.
Published: Mar 11, 2015
License: Apache-2.0
Opens a new window with license information.
Imports: 16
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
README
¶
go2docker
Description
go2docker is a command line tool to create minimal docker images from
SCRATCH for go packages.
It is based on the Docker Image Specification v1.0.0.
Usage
go2docker [-image NAMESPACE/BASENAME] [PACKAGES]
Options
image: namespace/name for the repository, default to go2docker/$(basename)
Examples
$ go get -d github.com/golang/example/hello
$ go2docker -image golang/hello github.com/golang/example/hello | docker load
$ docker images | grep hello
golang/hello latest e96b9f048cdf 2 seconds ago 1.477 MB
$ docker run golang/hello
Hello, Go examples!
TODOs
- add command line flag for entrypoint
- add command line flag for exposed port
- add command line flag for volume
- go get the package if not present in
$GOPATH
- add push command
- test more complicated package (ex: etcd)
- fix permission inside the tar
Documentation
¶
The go2docker command compiles a go main package and forge a minimal
docker image from the resulting static binary.
usage: go2docker [-image namespace/basename] go/pkg/path | docker load
Source Files
¶
Click to show internal directories.
Click to hide internal directories.