Affected by GO-2023-1901 and 6 other vulnerabilities

GO-2023-1901: Pipelines do not validate child UIDs in github.com/tektoncd/pipeline

GO-2026-4730: Tekton Pipelines controller panic via long resolver name in TaskRun/PipelineRun in github.com/tektoncd/pipeline

GO-2026-5272: Tekton Pipeline: Git Resolver Unsanitized Revision Parameter Enables git Argument Injection Leading to RCE in github.com/tektoncd/pipeline

GO-2026-5486: Tekton Pipelines: HTTP Resolver Unbounded Response Body Read Enables Denial of Service via Memory Exhaustion in github.com/tektoncd/pipeline

GO-2026-5630: Tekton Pipelines has VerificationPolicy regex pattern bypass via substring matching in github.com/tektoncd/pipeline

GO-2026-5643: Tekton Pipelines: VolumeMount path restriction bypass via missing filepath.Clean in /tekton/ check in github.com/tektoncd/pipeline

GO-2026-5711: Tekton Pipelines: Git resolver API mode leaks system-configured API token to user-controlled serverURL in github.com/tektoncd/pipeline

hack

command

v1.10.2 Latest Latest Go to latest Published: Mar 17, 2026 License: Apache-2.0 Imports: 8 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/tektoncd/pipeline

Links

README ¶

Assorted scripts for development

This directory contains several scripts useful in the development process of Tekton Pipelines.

update-codegen.sh: Updates auto-generated client libraries.
update-deps.sh: Updates Go dependencies.
update-openapigen.sh: Updates OpenAPI specification and Swagger file.
verify-codegen.sh: Verifies that auto-generated client libraries are up-to-date.
update-reference-docs.sh and related files: Generates docs/pipeline-api.md.
- reference-docs-gen-config.json is the configuration file for the gen-api-reference-docs binary.
- reference-docs-template contains Go templates for the generated Markdown.
Release docs have been moved to the top-level tekton dir

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

simplify_comments.go

Directories ¶

Path	Synopsis
reference-docs-template Placeholder file to make Go vendor this directory properly.	Placeholder file to make Go vendor this directory properly.
spec-gen

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL