Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update github-actions #494

Merged
merged 1 commit into from
Dec 16, 2024
Merged

chore(deps): update github-actions #494

merged 1 commit into from
Dec 16, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Dec 1, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
chgl/.github action minor v1.9.1 -> v1.10.1
github/codeql-action action patch v3.27.5 -> v3.27.9

Release Notes

chgl/.github (chgl/.github)

v1.10.1

Compare Source

Miscellaneous Chores

v1.10.0

Compare Source

Features

v1.9.5

Compare Source

Miscellaneous Chores

v1.9.4

Compare Source

Miscellaneous Chores

v1.9.3

Compare Source

Miscellaneous Chores

v1.9.2

Compare Source

Miscellaneous Chores
github/codeql-action (github/codeql-action)

v3.27.9

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.9 - 12 Dec 2024

No user facing changes.

See the full CHANGELOG.md for more information.

v3.27.8

Compare Source

v3.27.7

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.7 - 10 Dec 2024
  • We are rolling out a change in December 2024 that will extract the CodeQL bundle directly to the toolcache to improve performance. #​2631
  • Update default CodeQL bundle version to 2.20.0. #​2636

See the full CHANGELOG.md for more information.

v3.27.6

Compare Source

Configuration

📅 Schedule: Branch creation - "* 0-3 1 * *" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 1, 2024
edited
Loading

🦙 MegaLinter status: ❌ ERROR

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 4 0 0.02s
✅ BASH bash-exec 4 0 0.2s
✅ BASH shellcheck 4 0 0.13s
✅ BASH shfmt 4 0 0.01s
✅ DOCKERFILE hadolint 1 0 2.76s
✅ EDITORCONFIG editorconfig-checker 47 0 0.06s
✅ JSON jsonlint 4 0 0.19s
✅ JSON npm-package-json-lint yes no 0.53s
✅ JSON prettier 4 0 0.5s
✅ JSON v8r 4 0 13.27s
⚠️ MARKDOWN markdownlint 5 9 0.66s
❌ REPOSITORY checkov yes 2 21.04s
✅ REPOSITORY devskim yes no 1.32s
✅ REPOSITORY gitleaks yes no 0.12s
✅ REPOSITORY git_diff yes no 0.01s
❌ REPOSITORY grype yes 1 15.62s
✅ REPOSITORY kics yes no 14.21s
✅ REPOSITORY secretlint yes no 0.83s
✅ REPOSITORY syft yes no 1.41s
❌ REPOSITORY trivy yes 1 8.69s
✅ REPOSITORY trivy-sbom yes no 0.11s
✅ REPOSITORY trufflehog yes no 3.75s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

MegaLinter is graciously provided by OX Security

@renovate renovate bot force-pushed the renovate/github-actions branch from 58c36fb to dfe2416 Compare December 2, 2024 02:16
@renovate renovate bot changed the title chore(deps): update chgl/.github action to v1.9.2 chore(deps): update chgl/.github action to v1.9.3 Dec 2, 2024
@renovate renovate bot changed the title chore(deps): update chgl/.github action to v1.9.3 chore(deps): update github-actions Dec 3, 2024
@renovate renovate bot force-pushed the renovate/github-actions branch 3 times, most recently from 246b790 to 7f8c3d2 Compare December 9, 2024 11:13
@renovate renovate bot force-pushed the renovate/github-actions branch 4 times, most recently from 7744a6a to b9ab2e3 Compare December 13, 2024 21:46
@github-advanced-security
Copy link

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@renovate renovate bot force-pushed the renovate/github-actions branch from b9ab2e3 to 4ab53df Compare December 16, 2024 04:01
@github-actions GitHub Actions
Copy link

Trivy image scan report

ghcr.io/chgl/kube-powertools:pr-494 (ubuntu 22.04)

125 known vulnerabilities found (HIGH: 0 MEDIUM: 90 LOW: 35 CRITICAL: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
bash CVE-2022-3715 MEDIUM 5.1-6ubuntu1 5.1-6ubuntu1.1
bsdutils CVE-2024-28085 MEDIUM 1:2.37.2-4ubuntu3 2.37.2-4ubuntu3.3
curl CVE-2024-7264 MEDIUM 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.17
curl CVE-2024-8096 MEDIUM 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.18
curl CVE-2024-9681 LOW 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.19
libblkid1 CVE-2024-28085 MEDIUM 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3
libc-bin CVE-2023-5156 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.5
libc-bin CVE-2024-2961 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.7
libc-bin CVE-2024-33599 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc-bin CVE-2024-33600 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc-bin CVE-2024-33601 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc-bin CVE-2024-33602 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc-bin CVE-2023-4806 LOW 2.35-0ubuntu3.4 2.35-0ubuntu3.5
libc-bin CVE-2023-4813 LOW 2.35-0ubuntu3.4 2.35-0ubuntu3.5
libc6 CVE-2023-5156 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.5
libc6 CVE-2024-2961 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.7
libc6 CVE-2024-33599 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc6 CVE-2024-33600 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc6 CVE-2024-33601 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc6 CVE-2024-33602 MEDIUM 2.35-0ubuntu3.4 2.35-0ubuntu3.8
libc6 CVE-2023-4806 LOW 2.35-0ubuntu3.4 2.35-0ubuntu3.5
libc6 CVE-2023-4813 LOW 2.35-0ubuntu3.4 2.35-0ubuntu3.5
libcurl3-gnutls CVE-2024-7264 MEDIUM 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.17
libcurl3-gnutls CVE-2024-8096 MEDIUM 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.18
libcurl3-gnutls CVE-2024-9681 LOW 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.19
libcurl4 CVE-2024-7264 MEDIUM 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.17
libcurl4 CVE-2024-8096 MEDIUM 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.18
libcurl4 CVE-2024-9681 LOW 7.81.0-1ubuntu1.16 7.81.0-1ubuntu1.19
libexpat1 CVE-2024-45490 MEDIUM 2.4.7-1ubuntu0.3 2.4.7-1ubuntu0.4
libexpat1 CVE-2024-45491 MEDIUM 2.4.7-1ubuntu0.3 2.4.7-1ubuntu0.4
libexpat1 CVE-2024-45492 MEDIUM 2.4.7-1ubuntu0.3 2.4.7-1ubuntu0.4
libgnutls30 CVE-2023-5981 MEDIUM 3.7.3-4ubuntu1.2 3.7.3-4ubuntu1.3
libgnutls30 CVE-2024-0553 MEDIUM 3.7.3-4ubuntu1.2 3.7.3-4ubuntu1.4
libgnutls30 CVE-2024-0567 MEDIUM 3.7.3-4ubuntu1.2 3.7.3-4ubuntu1.4
libgnutls30 CVE-2024-28834 MEDIUM 3.7.3-4ubuntu1.2 3.7.3-4ubuntu1.5
libgnutls30 CVE-2024-28835 MEDIUM 3.7.3-4ubuntu1.2 3.7.3-4ubuntu1.5
libgssapi-krb5-2 CVE-2023-36054 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.3
libgssapi-krb5-2 CVE-2024-37370 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libgssapi-krb5-2 CVE-2024-37371 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libk5crypto3 CVE-2023-36054 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.3
libk5crypto3 CVE-2024-37370 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libk5crypto3 CVE-2024-37371 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libkrb5-3 CVE-2023-36054 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.3
libkrb5-3 CVE-2024-37370 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libkrb5-3 CVE-2024-37371 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libkrb5support0 CVE-2023-36054 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.3
libkrb5support0 CVE-2024-37370 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libkrb5support0 CVE-2024-37371 MEDIUM 1.19.2-2ubuntu0.2 1.19.2-2ubuntu0.4
libmount1 CVE-2024-28085 MEDIUM 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3
libpam-modules CVE-2024-22365 MEDIUM 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4
libpam-modules-bin CVE-2024-22365 MEDIUM 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4
libpam-runtime CVE-2024-22365 MEDIUM 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4
libpam0g CVE-2024-22365 MEDIUM 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4
libprocps8 CVE-2023-4016 LOW 2:3.3.17-6ubuntu2 2:3.3.17-6ubuntu2.1
libpython3.10-minimal CVE-2023-27043 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-minimal CVE-2023-6597 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
libpython3.10-minimal CVE-2024-0397 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.5
libpython3.10-minimal CVE-2024-0450 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
libpython3.10-minimal CVE-2024-6232 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-minimal CVE-2024-6923 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-minimal CVE-2024-8088 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-minimal CVE-2024-9287 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.7
libpython3.10-minimal CVE-2024-4032 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.5
libpython3.10-minimal CVE-2024-7592 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-stdlib CVE-2023-27043 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-stdlib CVE-2023-6597 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
libpython3.10-stdlib CVE-2024-0397 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.5
libpython3.10-stdlib CVE-2024-0450 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
libpython3.10-stdlib CVE-2024-6232 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-stdlib CVE-2024-6923 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-stdlib CVE-2024-8088 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libpython3.10-stdlib CVE-2024-9287 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.7
libpython3.10-stdlib CVE-2024-4032 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.5
libpython3.10-stdlib CVE-2024-7592 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.6
libsmartcols1 CVE-2024-28085 MEDIUM 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3
libssl3 CVE-2022-40735 MEDIUM 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.16
libssl3 CVE-2023-5363 MEDIUM 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.12
libssl3 CVE-2024-6119 MEDIUM 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.18
libssl3 CVE-2023-2975 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.12
libssl3 CVE-2023-3446 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.12
libssl3 CVE-2023-3817 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.12
libssl3 CVE-2023-5678 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.14
libssl3 CVE-2023-6129 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.14
libssl3 CVE-2023-6237 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.14
libssl3 CVE-2024-0727 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.14
libssl3 CVE-2024-2511 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.17
libssl3 CVE-2024-4603 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.17
libssl3 CVE-2024-4741 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.17
libssl3 CVE-2024-5535 LOW 3.0.2-0ubuntu1.10 3.0.2-0ubuntu1.17
libuuid1 CVE-2024-28085 MEDIUM 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3
login CVE-2023-4641 LOW 1:4.8.1-2ubuntu2.1 1:4.8.1-2ubuntu2.2
mount CVE-2024-28085 MEDIUM 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3
openssl CVE-2022-40735 MEDIUM 3.0.2-0ubuntu1.15 3.0.2-0ubuntu1.16
openssl CVE-2024-6119 MEDIUM 3.0.2-0ubuntu1.15 3.0.2-0ubuntu1.18
openssl CVE-2024-2511 LOW 3.0.2-0ubuntu1.15 3.0.2-0ubuntu1.17
openssl CVE-2024-4603 LOW 3.0.2-0ubuntu1.15 3.0.2-0ubuntu1.17
openssl CVE-2024-4741 LOW 3.0.2-0ubuntu1.15 3.0.2-0ubuntu1.17
openssl CVE-2024-5535 LOW 3.0.2-0ubuntu1.15 3.0.2-0ubuntu1.17
passwd CVE-2023-4641 LOW 1:4.8.1-2ubuntu2.1 1:4.8.1-2ubuntu2.2
procps CVE-2023-4016 LOW 2:3.3.17-6ubuntu2 2:3.3.17-6ubuntu2.1
python3-pip CVE-2024-37891 LOW 22.0.2+dfsg-1ubuntu0.4 22.0.2+dfsg-1ubuntu0.5
python3-pkg-resources CVE-2024-6345 MEDIUM 59.6.0-1.2ubuntu0.22.04.1 59.6.0-1.2ubuntu0.22.04.2
python3-setuptools CVE-2024-6345 MEDIUM 59.6.0-1.2ubuntu0.22.04.1 59.6.0-1.2ubuntu0.22.04.2
python3.10 CVE-2023-27043 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10 CVE-2023-6597 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
python3.10 CVE-2024-0397 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.5
python3.10 CVE-2024-0450 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
python3.10 CVE-2024-6232 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10 CVE-2024-6923 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10 CVE-2024-8088 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10 CVE-2024-9287 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.7
python3.10 CVE-2024-4032 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.5
python3.10 CVE-2024-7592 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10-minimal CVE-2023-27043 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10-minimal CVE-2023-6597 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
python3.10-minimal CVE-2024-0397 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.5
python3.10-minimal CVE-2024-0450 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.4
python3.10-minimal CVE-2024-6232 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10-minimal CVE-2024-6923 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10-minimal CVE-2024-8088 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.6
python3.10-minimal CVE-2024-9287 MEDIUM 3.10.12-1~22.04.3 3.10.12-1~22.04.7
python3.10-minimal CVE-2024-4032 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.5
python3.10-minimal CVE-2024-7592 LOW 3.10.12-1~22.04.3 3.10.12-1~22.04.6
tar CVE-2023-39804 MEDIUM 1.34+dfsg-1ubuntu0.1.22.04.1 1.34+dfsg-1ubuntu0.1.22.04.2
util-linux CVE-2024-28085 MEDIUM 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3

No Misconfigurations found

Node.js

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
cross-spawn CVE-2024-21538 HIGH 7.0.3 7.0.5, 6.0.6

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version

24 known vulnerabilities found (CRITICAL: 1 HIGH: 6 MEDIUM: 17 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.21.0 1.33.0
k8s.io/apimachinery GHSA-74fp-r6jw-h4mp HIGH v0.0.0-20180103014849-68f9c3a1feb3 0.0.0-20190927203648-9ce6eca90e73
k8s.io/apimachinery CVE-2020-8559 MEDIUM v0.0.0-20180103014849-68f9c3a1feb3 0.16.13, 0.17.9, 0.18.7
stdlib CVE-2024-24790 CRITICAL v1.20.4 1.21.11, 1.22.4
stdlib CVE-2023-29403 HIGH v1.20.4 1.19.10, 1.20.5
stdlib CVE-2023-39325 HIGH v1.20.4 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH v1.20.4 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH v1.20.4 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.20.4 1.22.7, 1.23.1
stdlib CVE-2023-29406 MEDIUM v1.20.4 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM v1.20.4 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM v1.20.4 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM v1.20.4 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM v1.20.4 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.20.4 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.20.4 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.20.4 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.20.4 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.20.4 1.22.7, 1.23.1

No Misconfigurations found

root/.local/share/helm/plugins/helm-push/bin/helm-cm-push

41 known vulnerabilities found (LOW: 0 CRITICAL: 3 HIGH: 9 MEDIUM: 29)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/containerd/containerd CVE-2023-25153 MEDIUM v1.6.15 1.5.18, 1.6.18
github.com/containerd/containerd CVE-2023-25173 MEDIUM v1.6.15 1.5.18, 1.6.18
github.com/containerd/containerd GHSA-7ww5-4wqc-m92c MEDIUM v1.6.15 1.6.26, 1.7.11
github.com/cyphar/filepath-securejoin GHSA-6xv5-86q9-7xr8 MEDIUM v0.2.3 0.2.4
github.com/docker/distribution CVE-2023-2253 HIGH v2.8.1+incompatible 2.8.2-beta.1
github.com/docker/docker CVE-2024-41110 CRITICAL v20.10.24+incompatible 23.0.15, 26.1.5, 27.1.1, 25.0.6
github.com/docker/docker CVE-2024-24557 MEDIUM v20.10.24+incompatible 24.0.9, 25.0.2
github.com/docker/docker CVE-2024-29018 MEDIUM v20.10.24+incompatible 26.0.0-rc3, 25.0.5, 23.0.11
github.com/docker/docker GHSA-jq35-85cj-fj4p MEDIUM v20.10.24+incompatible 24.0.7, 23.0.8, 20.10.27
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.5.0 0.31.0
golang.org/x/crypto CVE-2023-48795 MEDIUM v0.5.0 0.17.0
golang.org/x/net CVE-2023-39325 HIGH v0.9.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.9.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.9.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.9.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.49.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.49.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.28.1 1.33.0
helm.sh/helm/v3 CVE-2024-26147 HIGH v3.11.2 3.14.2
helm.sh/helm/v3 CVE-2024-25620 MEDIUM v3.11.2 3.14.1
stdlib CVE-2024-24790 CRITICAL v1.20.4 1.21.11, 1.22.4
stdlib CVE-2023-29403 HIGH v1.20.4 1.19.10, 1.20.5
stdlib CVE-2023-39325 HIGH v1.20.4 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH v1.20.4 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH v1.20.4 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.20.4 1.22.7, 1.23.1
stdlib CVE-2023-29406 MEDIUM v1.20.4 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM v1.20.4 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM v1.20.4 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM v1.20.4 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM v1.20.4 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.20.4 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.20.4 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.20.4 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.20.4 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.20.4 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.20.4 1.22.7, 1.23.1

No Misconfigurations found

root/.local/share/helm/plugins/helm-schema-gen/bin/helm-schema-gen

30 known vulnerabilities found (CRITICAL: 3 HIGH: 11 MEDIUM: 16 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
gopkg.in/yaml.v2 CVE-2019-11254 MEDIUM v2.2.7 2.2.8
stdlib CVE-2023-24538 CRITICAL v1.19.7 1.19.8, 1.20.3
stdlib CVE-2023-24540 CRITICAL v1.19.7 1.19.9, 1.20.4
stdlib CVE-2024-24790 CRITICAL v1.19.7 1.21.11, 1.22.4
stdlib CVE-2023-24534 HIGH v1.19.7 1.19.8, 1.20.3
stdlib CVE-2023-24536 HIGH v1.19.7 1.19.8, 1.20.3
stdlib CVE-2023-24537 HIGH v1.19.7 1.19.8, 1.20.3
stdlib CVE-2023-24539 HIGH v1.19.7 1.19.9, 1.20.4
stdlib CVE-2023-29400 HIGH v1.19.7 1.19.9, 1.20.4
stdlib CVE-2023-29403 HIGH v1.19.7 1.19.10, 1.20.5
stdlib CVE-2023-39325 HIGH v1.19.7 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH v1.19.7 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45287 HIGH v1.19.7 1.20.0
stdlib CVE-2023-45288 HIGH v1.19.7 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.19.7 1.22.7, 1.23.1
stdlib CVE-2023-29406 MEDIUM v1.19.7 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM v1.19.7 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM v1.19.7 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM v1.19.7 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM v1.19.7 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.19.7 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.19.7 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.19.7 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.19.7 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.19.7 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.19.7 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.19.7 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.19.7 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.19.7 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.19.7 1.22.7, 1.23.1

No Misconfigurations found

root/gcrane

3 known vulnerabilities found (MEDIUM: 2 LOW: 0 CRITICAL: 0 HIGH: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
stdlib CVE-2024-34156 HIGH v1.21.12 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM v1.21.12 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.21.12 1.22.7, 1.23.1

No Misconfigurations found

root/krane

5 known vulnerabilities found (HIGH: 1 MEDIUM: 2 LOW: 1 CRITICAL: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.17.0 0.31.0
stdlib CVE-2024-34156 HIGH v1.21.12 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM v1.21.12 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.21.12 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/ah

2 known vulnerabilities found (MEDIUM: 0 LOW: 1 CRITICAL: 1 HIGH: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.28.0 0.31.0

No Misconfigurations found

usr/local/bin/chart-doc-gen

17 known vulnerabilities found (CRITICAL: 1 HIGH: 4 MEDIUM: 12 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.30.0 1.33.0
stdlib CVE-2024-24790 CRITICAL v1.21.2 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH v1.21.2 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH v1.21.2 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH v1.21.2 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.21.2 1.22.7, 1.23.1
stdlib CVE-2023-39326 MEDIUM v1.21.2 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.21.2 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.21.2 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.21.2 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.21.2 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.21.2 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.21.2 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.21.2 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.21.2 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.21.2 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.21.2 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/conftest

1 known vulnerabilities found (HIGH: 0 MEDIUM: 0 LOW: 0 CRITICAL: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.27.0 0.31.0

No Misconfigurations found

usr/local/bin/container-structure-test

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.25.0 0.31.0

No Misconfigurations found

usr/local/bin/cosign

2 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.27.0 0.31.0

No Misconfigurations found

usr/local/bin/crane

3 known vulnerabilities found (HIGH: 1 MEDIUM: 2 LOW: 0 CRITICAL: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
stdlib CVE-2024-34156 HIGH v1.21.12 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM v1.21.12 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.21.12 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/ct

8 known vulnerabilities found (MEDIUM: 5 LOW: 0 CRITICAL: 1 HIGH: 2)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/hashicorp/go-retryablehttp CVE-2024-6104 MEDIUM v0.7.5 0.7.7
stdlib CVE-2024-24790 CRITICAL v1.22.2 1.21.11, 1.22.4
stdlib CVE-2024-24788 HIGH v1.22.2 1.22.3
stdlib CVE-2024-34156 HIGH v1.22.2 1.22.7, 1.23.1
stdlib CVE-2024-24789 MEDIUM v1.22.2 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.22.2 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.22.2 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.22.2 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/gomplate

4 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.29.0 0.31.0
stdlib CVE-2024-34156 HIGH v1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM v1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.22.5 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/helm

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.27.0 0.31.0

No Misconfigurations found

usr/local/bin/helm-docs

9 known vulnerabilities found (CRITICAL: 2 HIGH: 3 MEDIUM: 4 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.21.0 0.31.0
stdlib CVE-2024-24790 CRITICAL v1.22.1 1.21.11, 1.22.4
stdlib CVE-2023-45288 HIGH v1.22.1 1.21.9, 1.22.2
stdlib CVE-2024-24788 HIGH v1.22.1 1.22.3
stdlib CVE-2024-34156 HIGH v1.22.1 1.22.7, 1.23.1
stdlib CVE-2024-24789 MEDIUM v1.22.1 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.22.1 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.22.1 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.22.1 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/kube-linter

1 known vulnerabilities found (HIGH: 0 MEDIUM: 0 LOW: 0 CRITICAL: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.27.0 0.31.0

No Misconfigurations found

usr/local/bin/kube-score

No Vulnerabilities found

No Misconfigurations found

usr/local/bin/kubeconform

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
stdlib CVE-2024-34156 HIGH v1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM v1.22.5 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.22.5 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/kubectl

No Vulnerabilities found

No Misconfigurations found

usr/local/bin/kubent

6 known vulnerabilities found (CRITICAL: 0 HIGH: 2 MEDIUM: 4 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/open-policy-agent/opa CVE-2024-8260 MEDIUM v0.67.1 0.68.0
helm.sh/helm/v3 CVE-2024-26147 HIGH v3.13.3 3.14.2
helm.sh/helm/v3 CVE-2024-25620 MEDIUM v3.13.3 3.14.1
stdlib CVE-2024-34156 HIGH v1.23.0 1.22.7, 1.23.1
stdlib CVE-2024-34155 MEDIUM v1.23.0 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.23.0 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/kubepug

17 known vulnerabilities found (CRITICAL: 1 HIGH: 3 MEDIUM: 13 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/net CVE-2023-45288 MEDIUM v0.17.0 0.23.0
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.30.0 1.33.0
stdlib CVE-2024-24790 CRITICAL v1.21.3 1.21.11, 1.22.4
stdlib CVE-2023-45283 HIGH v1.21.3 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH v1.21.3 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.21.3 1.22.7, 1.23.1
stdlib CVE-2023-39326 MEDIUM v1.21.3 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.21.3 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.21.3 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.21.3 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.21.3 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.21.3 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.21.3 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.21.3 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.21.3 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.21.3 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.21.3 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/kubescape

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.27.0 0.31.0

No Misconfigurations found

usr/local/bin/kubesec

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.29.0 0.31.0

No Misconfigurations found

usr/local/bin/kubeval

77 known vulnerabilities found (CRITICAL: 4 HIGH: 44 MEDIUM: 28 LOW: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/sys CVE-2022-29526 MEDIUM v0.0.0-20200223170610-d5e6a3e2c0ae 0.0.0-20220412211240-33da011f77ad
golang.org/x/text CVE-2021-38561 HIGH v0.3.2 0.3.7
golang.org/x/text CVE-2022-32149 HIGH v0.3.2 0.3.8
golang.org/x/text CVE-2020-14040 MEDIUM v0.3.2 0.3.3
stdlib CVE-2022-23806 CRITICAL v1.16.2 1.16.14, 1.17.7
stdlib CVE-2023-24538 CRITICAL v1.16.2 1.19.8, 1.20.3
stdlib CVE-2023-24540 CRITICAL v1.16.2 1.19.9, 1.20.4
stdlib CVE-2024-24790 CRITICAL v1.16.2 1.21.11, 1.22.4
stdlib CVE-2021-33195 HIGH v1.16.2 1.15.13, 1.16.5
stdlib CVE-2021-33196 HIGH v1.16.2 1.15.13, 1.16.5
stdlib CVE-2021-33198 HIGH v1.16.2 1.15.13, 1.16.5
stdlib CVE-2021-39293 HIGH v1.16.2 1.16.8, 1.17.1
stdlib CVE-2021-41771 HIGH v1.16.2 1.16.10, 1.17.3
stdlib CVE-2021-41772 HIGH v1.16.2 1.16.10, 1.17.3
stdlib CVE-2021-44716 HIGH v1.16.2 1.16.12, 1.17.5
stdlib CVE-2022-23772 HIGH v1.16.2 1.16.14, 1.17.7
stdlib CVE-2022-24675 HIGH v1.16.2 1.17.9, 1.18.1
stdlib CVE-2022-24921 HIGH v1.16.2 1.16.15, 1.17.8
stdlib CVE-2022-27664 HIGH v1.16.2 1.18.6, 1.19.1
stdlib CVE-2022-28131 HIGH v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-28327 HIGH v1.16.2 1.17.9, 1.18.1
stdlib CVE-2022-2879 HIGH v1.16.2 1.18.7, 1.19.2
stdlib CVE-2022-2880 HIGH v1.16.2 1.18.7, 1.19.2
stdlib CVE-2022-29804 HIGH v1.16.2 1.17.11, 1.18.3
stdlib CVE-2022-30580 HIGH v1.16.2 1.17.11, 1.18.3
stdlib CVE-2022-30630 HIGH v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-30631 HIGH v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-30632 HIGH v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-30633 HIGH v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-30634 HIGH v1.16.2 1.17.11, 1.18.3
stdlib CVE-2022-30635 HIGH v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-32189 HIGH v1.16.2 1.17.13, 1.18.5
stdlib CVE-2022-41715 HIGH v1.16.2 1.18.7, 1.19.2
stdlib CVE-2022-41716 HIGH v1.16.2 1.18.8, 1.19.3
stdlib CVE-2022-41720 HIGH v1.16.2 1.18.9, 1.19.4
stdlib CVE-2022-41722 HIGH v1.16.2 1.19.6, 1.20.1
stdlib CVE-2022-41723 HIGH v1.16.2 1.19.6, 1.20.1
stdlib CVE-2022-41724 HIGH v1.16.2 1.19.6, 1.20.1
stdlib CVE-2022-41725 HIGH v1.16.2 1.19.6, 1.20.1
stdlib CVE-2023-24534 HIGH v1.16.2 1.19.8, 1.20.3
stdlib CVE-2023-24536 HIGH v1.16.2 1.19.8, 1.20.3
stdlib CVE-2023-24537 HIGH v1.16.2 1.19.8, 1.20.3
stdlib CVE-2023-24539 HIGH v1.16.2 1.19.9, 1.20.4
stdlib CVE-2023-29400 HIGH v1.16.2 1.19.9, 1.20.4
stdlib CVE-2023-29403 HIGH v1.16.2 1.19.10, 1.20.5
stdlib CVE-2023-39325 HIGH v1.16.2 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH v1.16.2 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45287 HIGH v1.16.2 1.20.0
stdlib CVE-2023-45288 HIGH v1.16.2 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.16.2 1.22.7, 1.23.1
stdlib CVE-2021-31525 MEDIUM v1.16.2 1.15.12, 1.16.4
stdlib CVE-2021-33197 MEDIUM v1.16.2 1.15.13, 1.16.5
stdlib CVE-2021-34558 MEDIUM v1.16.2 1.15.14, 1.16.6
stdlib CVE-2021-36221 MEDIUM v1.16.2 1.15.15, 1.16.7
stdlib CVE-2021-44717 MEDIUM v1.16.2 1.16.12, 1.17.5
stdlib CVE-2022-1705 MEDIUM v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-1962 MEDIUM v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-29526 MEDIUM v1.16.2 1.17.10, 1.18.2
stdlib CVE-2022-32148 MEDIUM v1.16.2 1.17.12, 1.18.4
stdlib CVE-2022-41717 MEDIUM v1.16.2 1.18.9, 1.19.4
stdlib CVE-2023-24532 MEDIUM v1.16.2 1.19.7, 1.20.2
stdlib CVE-2023-29406 MEDIUM v1.16.2 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM v1.16.2 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM v1.16.2 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM v1.16.2 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM v1.16.2 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.16.2 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.16.2 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.16.2 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.16.2 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.16.2 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.16.2 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.16.2 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.16.2 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.16.2 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.16.2 1.22.7, 1.23.1
stdlib CVE-2022-30629 LOW v1.16.2 1.17.11, 1.18.3

No Misconfigurations found

usr/local/bin/kustomize

No Vulnerabilities found

No Misconfigurations found

usr/local/bin/kyverno

3 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 1 LOW: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
github.com/open-policy-agent/opa CVE-2024-8260 MEDIUM v0.67.1 0.68.0
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.28.0 0.31.0

No Misconfigurations found

usr/local/bin/nova

2 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/net CVE-2023-45288 MEDIUM v0.17.0 0.23.0
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.31.0 1.33.0

No Misconfigurations found

usr/local/bin/pluto

No Vulnerabilities found

No Misconfigurations found

usr/local/bin/polaris

No Vulnerabilities found

No Misconfigurations found

usr/local/bin/s5cmd

16 known vulnerabilities found (CRITICAL: 1 HIGH: 4 MEDIUM: 11 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
stdlib CVE-2024-24790 CRITICAL v1.20.8 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH v1.20.8 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH v1.20.8 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH v1.20.8 1.21.9, 1.22.2
stdlib CVE-2024-34156 HIGH v1.20.8 1.22.7, 1.23.1
stdlib CVE-2023-39326 MEDIUM v1.20.8 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM v1.20.8 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM v1.20.8 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM v1.20.8 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM v1.20.8 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM v1.20.8 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM v1.20.8 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM v1.20.8 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM v1.20.8 1.21.12, 1.22.5
stdlib CVE-2024-34155 MEDIUM v1.20.8 1.22.7, 1.23.1
stdlib CVE-2024-34158 MEDIUM v1.20.8 1.22.7, 1.23.1

No Misconfigurations found

usr/local/bin/trivy

2 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
github.com/golang-jwt/jwt/v4 CVE-2024-51744 LOW v4.5.0 4.5.1
golang.org/x/crypto CVE-2024-45337 CRITICAL v0.27.0 0.31.0

No Misconfigurations found

usr/local/bin/yq

No Vulnerabilities found

No Misconfigurations found

@chgl chgl merged commit 7282352 into master Dec 16, 2024
13 of 14 checks passed
@chgl chgl deleted the renovate/github-actions branch December 16, 2024 13:34
chgl-releaser bot pushed a commit that referenced this pull request Dec 16, 2024
@semantic-release-bot
chore(release): 2.3.35 [skip ci]
3952675 
## [2.3.35](v2.3.34...v2.3.35) (2024-12-16)

### Bug Fixes

* **deps:** update all non-major dependencies ([#495](#495)) ([116df92](116df92))

### Miscellaneous Chores

* **deps:** update docker.io/nginxinc/nginx-unprivileged:1.27.3 docker digest to 0abb7c4 ([#497](#497)) ([cd5f87a](cd5f87a))
* **deps:** update github-actions ([#494](#494)) ([7282352](7282352))
@chgl-releaser
Copy link

chgl-releaser bot commented Dec 16, 2024

🎉 This PR is included in version 2.3.35 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@chgl