You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.
Search by package name:
my-package (implicit)
name:my-package (explicit)
Search by package filename:
filename:my-package.ext
Search by package tag:
tag:latest
Search by package version:
version:1.0.0
prerelease:true (prereleases)
prerelease:false (no prereleases)
Search by package architecture:
architecture:x86_64
Search by package distribution:
distribution:el
Search by package license:
license:MIT
Search by package format:
format:deb
Search by package status:
status:in_progress
Search by package file checksum:
checksum:5afba
Search by package security status:
severity:critical
Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000
Search by # of package downloads:
downloads:>8
downloads:<100
Search by package type:
type:binary
type:source
Search by package size (bytes):
size:>50000
size:<10000
Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0
Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"
Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY
Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true
Search by repository:
repository:repo-name
Search by last download date:
last_downloaded:<"30 days ago"
last_downloaded:>"August 14, 2022 EST"
Search queries for all Debian-specific (and related) package types
Search by component:
deb_component:unstable
Search queries for all Maven-specific (and related) package types
Search by group ID:
maven_group_id:org.apache
Search queries for all Docker-specific (and related) package types
Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)
Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)
Search queries for all Generic-specific package types
Search by file path:
generic_filepath:path/to/file.txt
Search by directory:
generic_directory:path/to
Field type modifiers (depending on the type, you can influence behaviour)
For all queries, you can use:
~foo for negation
For string queries, you can use:
^foo to anchor to start of term
foo$ to anchor to end of term
foo*bar for fuzzy matching
For number/date or version queries, you can use:
>foo for values greater than
>=foo for values greater / equal
<foo for values less than
<=foo for values less / equal
Need a secure and centralised artifact repository to deliver Alpine,
Cargo,
CocoaPods,
Composer,
Conan,
Conda,
CRAN,
Dart,
Debian,
Docker,
Generic,
Go,
Helm,
Hex,
HuggingFace,
LuaRocks,
Maven,
MCP,
npm,
NuGet,
P2,
Python,
RedHat,
Ruby,
Swift,
Terraform,
Vagrant,
VSX,
Raw & More packages?
Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.
With support for all major package formats, you can trust us to manage your software supply chain.
Debian
Helm
NuGet
RedHat
eventstore
(Kurrent)
/
kurrent-latest
kurrentdb-operator
e7791f3cca1ba0dd4f91141492c…
One-liner (summary)
Description
| Status | Completed |
|---|---|
| Checksum (MD5) | b8abbf363ea0f96e4ebe79f40a7f5204 |
| Checksum (SHA-1) | 81582fdb244d676ad85a17376b5d108478622c10 |
| Checksum (SHA-256) | e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6 |
| Checksum (SHA-512) | 522e70338290de41d4c11e9eeeda93fc32f20e2fb74a497e782c482dd5f3b51ec1… |
| GPG Signature | |
| GPG Fingerprint | 02a89004460aa252035d6b7d094442d90ad50bcd |
| Storage Region | Dublin, Ireland |
| Type | Binary (contains binaries and binary artifacts) |
| Uploaded At | 1 week, 4 days ago |
| Uploaded By |
|
| Slug Id | kurrentdb-operator-pt8q |
| Unique Id | Rb564taw7Ii7 |
| Version (Raw) | e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6 |
| Version (Parsed) |
|
| docker-specific metadata | |
| Image Digest | sha256:e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6 |
| Config Digest | sha256:da6c2f8879ec8cce9f78b8b0e9d2cb7c64541e71dab7def5680ba1eb92b01b0c |
| V1 OCI Index Digest | sha256:8b2138eba198c8ab5a0df284d59f36fb104467cf1502f148598ca1afe137cbaa |
| V1 Distribution (Signed) Digest | sha256:ae9259ee0a9ee1bfd91caeb60300ff6e7532b6e4bfad9b92b693f6314fea1b19 |
| V2 Distribution List Digest | sha256:88eb71b47f5ea40f0f5373ac47c63f555c9e28844ead10535df2e58ac19964dd |
| V2 Distribution Digest | sha256:5b3ff6a5b58232caa790de8abb4e83c4244658758c523ced2dec80c88563e6bf |
| V1 Distribution Digest | sha256:0ee4c3adcedc81b00a0cc458f22519b8764fdb63daa592474e6ba144078299f6 |
| V1 OCI Digest | sha256:e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6 |
| extended metadata | |
| Manifest Type | V1 OCI |
| Architecture | arm64 |
| Config | |
| Created | 2026-06-05 18:39:28 UTC |
| Os | linux |
This package was uploaded with the following V1 OCI manifest:
{"schemaVersion":2,"mediaType":"application/vnd.oci.image.manifest.v1+json","config":{"mediaType":"application/vnd.oci.image.config.v1+json","digest":"sha256:c1df8951a0bbcce292a2a5d46aed96669ca1f566515ca10b5775bc07c2570e00","size":4219},"layers":[{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:8268f366d00b6a358ec055800c4b3af1760b9ed7e51bd097e935eed06792888e","size":89172},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:7750c1a1cd8e356f717610d15552bd8a4af1801b72b5855c9e8494cc07636e77","size":12963},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:df0108779cfde4f630d46c0224ee569d2c5ad5cd40eb4bf2698b5395a6d4354f","size":303061},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:4744ace31f426a693743a7132d1303e857e8a1ddc5508ce010eb584066b7044b","size":271166},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:97ae0a42274e126686192f377a2b4a112583630eadde1920a761ed910cdbde34","size":32972},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:02c91f6b395a6b06d17b8985a2db90aef7b09feedff77eff1f7c269161263a9b","size":75},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:ffdf8cfdbafeabe2762d2dde33e36f1b87dfa967ae34811ff5342ebe8233eb4b","size":197},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:818beb2a6ac52d3cfb90a96d84cff5123ade753aac5adc2dd8f43347f6fa74eb","size":132},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:a0ce62815afcb344f5e245b1fe8026bef515df1fa3446ecc272057ba74be8bed","size":168},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:83717d7c33ed99f82afbd90b8a13fe29f05c433b7c55c2d7e1f2c2df18dfd5d5","size":91},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:88d89c9f554ae39742eb60ef19cc0198899514f6c95ebf216d7fc3249973e680","size":361},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:7f53453a06ce9b3dccd47b64b7573be15e40c8f1307713500732d75e2f52a3dc","size":318},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:674938dfff19b862d50c13a3f151fbbbabfebe2fffdf70da406be9a184d5e983","size":138230},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:853971090df97d27a1e3e03bd181579e004044bd327b792441dd7cbd5b045ccf","size":1825},{"mediaType":"application/vnd.oci.image.layer.v1.tar+gzip","digest":"sha256:e01cc99b31bdc06f27cd046f863101fa05fdc0aa134a959dca0eead90f8ca99a","size":14374350}],"annotations":{"org.opencontainers.image.base.digest":"sha256:b1dd5a77a6ba849d8e51202d6721130510b49cb3fd37ef47bf2dc3b555a4d9df","org.opencontainers.image.base.name":"gcr.io/distroless/static:nonroot","org.opencontainers.image.created":"2026-06-05T18:39:28.64370973Z"}}|
Digest:
sha256:8268f366d00b6a358ec055800c4b3af1760b9ed7e51bd097e935eed06792888e
Command: bazel build @trixie//base-files/arm64:data_statusd |
87.1 KB | ||
|
Digest:
sha256:7750c1a1cd8e356f717610d15552bd8a4af1801b72b5855c9e8494cc07636e77
Command: bazel build @trixie//netbase/arm64:data_statusd |
12.7 KB | ||
|
Digest:
sha256:df0108779cfde4f630d46c0224ee569d2c5ad5cd40eb4bf2698b5395a6d4354f
Command: bazel build @trixie//tzdata/arm64:data_statusd |
296.0 KB | ||
|
Digest:
sha256:4744ace31f426a693743a7132d1303e857e8a1ddc5508ce010eb584066b7044b
Command: bazel build @trixie//tzdata-legacy/arm64:data_statusd |
264.8 KB | ||
|
Digest:
sha256:97ae0a42274e126686192f377a2b4a112583630eadde1920a761ed910cdbde34
Command: bazel build @trixie//media-types/arm64:data_statusd |
32.2 KB | ||
|
Digest:
sha256:02c91f6b395a6b06d17b8985a2db90aef7b09feedff77eff1f7c269161263a9b
Command: bazel build //common:rootfs |
75 bytes | ||
|
Digest:
sha256:ffdf8cfdbafeabe2762d2dde33e36f1b87dfa967ae34811ff5342ebe8233eb4b
Command: bazel build //common:passwd |
197 bytes | ||
|
Digest:
sha256:818beb2a6ac52d3cfb90a96d84cff5123ade753aac5adc2dd8f43347f6fa74eb
Command: bazel build //common:home |
132 bytes | ||
|
Digest:
sha256:a0ce62815afcb344f5e245b1fe8026bef515df1fa3446ecc272057ba74be8bed
Command: bazel build //common:group |
168 bytes | ||
|
Digest:
sha256:83717d7c33ed99f82afbd90b8a13fe29f05c433b7c55c2d7e1f2c2df18dfd5d5
Command: bazel build //common:tmp |
91 bytes | ||
|
Digest:
sha256:88d89c9f554ae39742eb60ef19cc0198899514f6c95ebf216d7fc3249973e680
Command: bazel build //static:nsswitch |
361 bytes | ||
|
Digest:
sha256:7f53453a06ce9b3dccd47b64b7573be15e40c8f1307713500732d75e2f52a3dc
Command: bazel build //common:os_release_debian13 |
318 bytes | ||
|
Digest:
sha256:674938dfff19b862d50c13a3f151fbbbabfebe2fffdf70da406be9a184d5e983
Command: bazel build //common:cacerts_debian13_arm64 |
135.0 KB | ||
|
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ARG TARGETOS |
32 bytes | ||
|
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ARG TARGETARCH TARGETOS |
32 bytes | ||
|
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) WORKDIR / |
32 bytes | ||
|
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) USER 65532:65532 |
32 bytes | ||
|
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ENTRYPOINT ["/kurrentdb-operator"] |
32 bytes | ||
|
Digest:
sha256:853971090df97d27a1e3e03bd181579e004044bd327b792441dd7cbd5b045ccf
Command: /bin/sh -c #(nop) COPY dir:05ab044aa020e1c6d8062ef11ab8b8aa542ca205af43568ba9cf16464d3a4877 in /licenses |
1.8 KB | ||
|
Digest:
sha256:e01cc99b31bdc06f27cd046f863101fa05fdc0aa134a959dca0eead90f8ca99a
Command: /bin/sh -c #(nop) COPY file:5fb6c118be90d22e348c67af031fd0019abd8aa93ccabf3300d2f31b69220fb6 in /kurrentdb-operator |
13.7 MB | ||
|
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) LABEL "release"="2d782cf0" "name"="kurrentdb-operator" "maintainer"="Kurrent, Inc" "vendor"="Kurrent, Inc" "summary"="The KurrentDB Operator." "description"="Deploys and manages KurrentDB within Kubernetes." "version"="1.6.0" |
32 bytes |
Last scanned
1 week, 4 days ago
Scan result
Vulnerable
Vulnerability count
2
Max. severity
Medium| Target: | kurrentdb-operator | |
| MEDIUM |
CVE-2025-47914: golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messagesSSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.Package Name: golang.org/x/crypto Installed Version: v0.42.0 Fixed Version: 0.45.0 References: access.redhat.com go.dev go.dev go.googlesource.com groups.google.com nvd.nist.gov pkg.go.dev www.cve.org |
|
| MEDIUM |
CVE-2025-58181: golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authenticationSSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.Package Name: golang.org/x/crypto Installed Version: v0.42.0 Fixed Version: 0.45.0 References: access.redhat.com github.com github.com go.dev go.dev groups.google.com groups.google.com nvd.nist.gov pkg.go.dev ubuntu.com www.cve.org |
|
Package statistics are no longer available on cloudsmith.io. Please visit our new web app to access this feature.
These instructions assume you have setup the repository first (or read it).
To pull kurrentdb-operator @ reference/tag sha256:e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6:
docker pull docker.eventstore.com/kurrent-latest/kurrentdb-operator@sha256:e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6You can also pull the latest version of this image (if it exists):
docker pull docker.eventstore.com/kurrent-latest/kurrentdb-operator:latestTo refer to this image after pulling in a Dockerfile, specify the following:
FROM docker.eventstore.com/kurrent-latest/kurrentdb-operator@sha256:e7791f3cca1ba0dd4f91141492c8c8d8995166ac31522387bc073fe9d80228f6