{"id":3764007,"name":"github.com/liamg/gitjacker","ecosystem":"go","description":"","homepage":"https://github.com/liamg/gitjacker","licenses":"Unlicense","normalized_licenses":["Unlicense"],"repository_url":"https://github.com/liamg/gitjacker","keywords_array":[],"namespace":"github.com/liamg","versions_count":4,"first_release_published_at":"2020-09-26T15:10:05.000Z","latest_release_published_at":"2021-03-29T06:55:50.000Z","latest_release_number":"v0.1.0","last_synced_at":"2026-04-07T10:09:18.632Z","created_at":"2022-04-11T16:11:26.920Z","updated_at":"2026-04-07T10:09:18.632Z","registry_url":"https://pkg.go.dev/github.com/liamg/gitjacker","install_command":"go get github.com/liamg/gitjacker","documentation_url":"https://pkg.go.dev/github.com/liamg/gitjacker#section-documentation","metadata":{},"repo_metadata":{"uuid":"298060777","full_name":"liamg/gitjacker","owner":"liamg","description":"🔪 :octocat: Leak git repositories from misconfigured websites","archived":false,"fork":false,"pushed_at":"2022-12-23T13:31:12.000Z","size":1688,"stargazers_count":1488,"open_issues_count":9,"forks_count":113,"subscribers_count":44,"default_branch":"master","last_synced_at":"2023-03-17T12:49:26.029Z","etag":null,"topics":["git","hacking","penetration-testing","pentesting","red-team"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"unlicense","status":null,"scm":"git","pull_requests_enabled":true,"logo_url":null,"metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null},"funding":{"github":["liamg"]}},"created_at":"2020-09-23T18:33:08.000Z","updated_at":"2023-03-12T03:22:44.000Z","dependencies_parsed_at":"2023-01-30T18:46:01.765Z","dependency_job_id":null,"html_url":"https://github.com/liamg/gitjacker","commit_stats":null,"repository_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/liamg%2Fgitjacker","tags_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/liamg%2Fgitjacker/tags","manifests_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/liamg%2Fgitjacker/manifests","owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/liamg","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":108921946,"host_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names"},"owner_record":{"login":"liamg","name":"Liam Galvin","uuid":"1187060","kind":"user","description":"☠️ Security ⋆ 🔧 Engineering ⋆ 🐧 Open Source","email":"","website":"https://lia.mg","location":"New Forest, United Kingdom","twitter":"liam_galvin","company":"@ghostsecurity","avatar_url":"https://avatars.githubusercontent.com/u/1187060?u=be7cd327b98eb9654e864424c5e21492b8f659b4\u0026v=4","repositories_count":65,"last_synced_at":"2023-02-22T17:40:35.877Z","metadata":{"has_sponsors_listing":true},"owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/liamg"},"tags":[{"name":"v0.1.0","sha":"ca1b894dac3627f7d9b0bb0ac223247eac72dc45","kind":"commit","published_at":"2021-03-29T06:55:50.000Z","download_url":"https://codeload.github.com/liamg/gitjacker/tar.gz/v0.1.0","html_url":"https://github.com/liamg/gitjacker/releases/tag/v0.1.0"},{"name":"v0.0.3","sha":"262d7bb95adc1168c2b908cb317c9122eb4b0573","kind":"commit","published_at":"2021-02-23T21:53:20.000Z","download_url":"https://codeload.github.com/liamg/gitjacker/tar.gz/v0.0.3","html_url":"https://github.com/liamg/gitjacker/releases/tag/v0.0.3"},{"name":"v0.0.2","sha":"04b62dd69e262a10cf82d090c0a76c135c278ed5","kind":"commit","published_at":"2020-09-26T17:32:28.000Z","download_url":"https://codeload.github.com/liamg/gitjacker/tar.gz/v0.0.2","html_url":"https://github.com/liamg/gitjacker/releases/tag/v0.0.2"},{"name":"v0.0.1","sha":"de731f7369afa0935c9831ee60b966bb9e098a83","kind":"commit","published_at":"2020-09-26T15:10:05.000Z","download_url":"https://codeload.github.com/liamg/gitjacker/tar.gz/v0.0.1","html_url":"https://github.com/liamg/gitjacker/releases/tag/v0.0.1"}]},"repo_metadata_updated_at":"2023-03-21T19:03:49.260Z","dependent_packages_count":0,"downloads":null,"downloads_period":null,"dependent_repos_count":0,"rankings":{"downloads":null,"dependent_repos_count":9.345852080216646,"dependent_packages_count":6.999148183520997,"stargazers_count":1.0643777980038989,"forks_count":1.542809108937115,"average":4.738046792669665},"purl":"pkg:golang/github.com/liamg/gitjacker","advisories":[{"uuid":"GSA_kwCzR0hTQS00ajV4LWYzOTQteHg3Oc4AArAh","url":"https://github.com/advisories/GHSA-4j5x-f394-xx79","title":"gitjacker arbitrary code execution","description":"gitjacker before 0.1.0 allows remote attackers to execute arbitrary code via a crafted .git directory because of directory traversal.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2022-05-24T22:01:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2021-29417","https://github.com/liamg/gitjacker/compare/v0.0.3...v0.1.0","https://github.com/liamg/gitjacker/releases/tag/v0.1.0","https://vuln.ryotak.me/advisories/5","https://github.com/advisories/GHSA-4j5x-f394-xx79"],"source_kind":"github","identifiers":["GHSA-4j5x-f394-xx79","CVE-2021-29417"],"repository_url":"https://github.com/liamg/gitjacker","blast_radius":1.0,"created_at":"2023-07-13T18:03:53.830Z","updated_at":"2026-04-05T20:08:35.689Z","epss_percentage":0.05337,"epss_percentile":0.8961,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS00ajV4LWYzOTQteHg3Oc4AArAh","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS00ajV4LWYzOTQteHg3Oc4AArAh","packages":[{"ecosystem":"go","package_name":"github.com/liamg/gitjacker","versions":[{"first_patched_version":"0.1.0","vulnerable_version_range":"\u003c 0.1.0"}],"purl":"pkg:go/github.com%2Fliamg%2Fgitjacker"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS00ajV4LWYzOTQteHg3Oc4AArAh/related_packages","related_advisories":[]}],"docker_usage_url":"https://docker.ecosyste.ms/usage/go/github.com/liamg/gitjacker","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/go/github.com/liamg/gitjacker","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/go/github.com/liamg/gitjacker/dependencies","status":null,"funding_links":["https://github.com/sponsors/liamg"],"critical":null,"issue_metadata":{"last_synced_at":"2023-05-18T05:46:21.552Z","issues_count":10,"pull_requests_count":9,"avg_time_to_close_issue":791273.0,"avg_time_to_close_pull_request":341690.25,"issues_closed_count":1,"pull_requests_closed_count":8,"pull_request_authors_count":6,"issue_authors_count":9,"avg_comments_per_issue":1.1,"avg_comments_per_pull_request":0.2222222222222222,"merged_pull_requests_count":8,"bot_issues_count":0,"bot_pull_requests_count":0,"past_year_issues_count":1,"past_year_pull_requests_count":1,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":null,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":0,"past_year_pull_request_authors_count":1,"past_year_issue_authors_count":1,"past_year_avg_comments_per_issue":0.0,"past_year_avg_comments_per_pull_request":0.0,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":0},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fliamg%2Fgitjacker/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fliamg%2Fgitjacker/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fliamg%2Fgitjacker/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fliamg%2Fgitjacker/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fliamg%2Fgitjacker/codemeta","maintainers":[]}