17 matches found
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: kyverno, melange, terragrunt, pulumi-language-dotnet, grafana-alloy, flux, bom, grype, teleport, osv-scanner, cerbos, kaniko, xeol, snyk-cli, external-secrets-operator, pulumi-language-java, apko, nuclei, tfsec, zarf, crossplane, steampipe, dagger, witness,...
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: grafana, steampipe, gitea-fips, cloudbeat, kubevela, wolfictl, crossplane, grype-fips, witness, redpanda-console, src-fingerprint-fips, trivy-operator, trivy-operator-fips, external-secrets-operator-fips, jfrog-cli, gitlab-rails-ce, google-osconfig-agent, gptscript,...
CVE-2026-45022 vulnerabilities
Vulnerabilities for packages: grafana, steampipe, gitea-fips, cloudbeat, kubevela, wolfictl, crossplane, grype-fips, witness, redpanda-console, src-fingerprint-fips, trivy-operator, trivy-operator-fips, external-secrets-operator-fips, jfrog-cli, gitlab-rails-ce, google-osconfig-agent, gptscript,...
CLEANSTART-2026-FO49462 Security fixes for ghsa-3xc5-wrhm-f963 applied in versions: 1.31.1-r0
Security vulnerability affects the pulumi-language-yaml package. This issue is resolved in later releases. See references for vulnerability details...
CVE-2026-34165 vulnerabilities
Vulnerabilities for packages: grafana, steampipe, gitea-fips, cloudbeat, kubevela, wolfictl, crossplane, grype-fips, witness, src-fingerprint-fips, trivy-operator, trivy-operator-fips, external-secrets-operator-fips, jfrog-cli, gitlab-rails-ce, google-osconfig-agent, gptscript, chainctl, trivy,...
GHSA-GM2X-2G9H-CCM8 vulnerabilities
Vulnerabilities for packages: grafana, steampipe, gitea-fips, cloudbeat, kubevela, wolfictl, crossplane, grype-fips, witness, src-fingerprint-fips, trivy-operator, trivy-operator-fips, external-secrets-operator-fips, jfrog-cli, gitlab-rails-ce, google-osconfig-agent, gptscript, chainctl, trivy,...
GHSA-JHF3-XXHW-2WPP vulnerabilities
Vulnerabilities for packages: kyverno, melange, pulumi-language-dotnet, grafana-alloy, flux, bom, grype, teleport, osv-scanner, chezmoi, cerbos, kaniko, xeol, snyk-cli, external-secrets-operator, pulumi-language-java, apko, nuclei, tfsec, zarf, crossplane, steampipe, dagger, witness, trufflehog,...
CVE-2026-34165 vulnerabilities
Vulnerabilities for packages: kyverno, melange, pulumi-language-dotnet, grafana-alloy, flux, bom, grype, teleport, osv-scanner, chezmoi, cerbos, kaniko, xeol, snyk-cli, external-secrets-operator, pulumi-language-java, apko, nuclei, tfsec, zarf, crossplane, steampipe, dagger, witness, trufflehog,...
CVE-2026-33762 vulnerabilities
Vulnerabilities for packages: kyverno, melange, pulumi-language-dotnet, grafana-alloy, flux, bom, grype, teleport, osv-scanner, chezmoi, cerbos, kaniko, xeol, snyk-cli, external-secrets-operator, pulumi-language-java, apko, nuclei, tfsec, zarf, crossplane, steampipe, dagger, witness, trufflehog,...
GHSA-GM2X-2G9H-CCM8 vulnerabilities
Vulnerabilities for packages: kyverno, melange, pulumi-language-dotnet, grafana-alloy, flux, bom, grype, teleport, osv-scanner, chezmoi, cerbos, kaniko, xeol, snyk-cli, external-secrets-operator, pulumi-language-java, apko, nuclei, tfsec, zarf, crossplane, steampipe, dagger, witness, trufflehog,...
GHSA-Q9HV-HPM4-HJ6X vulnerabilities
Vulnerabilities for packages: terragrunt, boring-registry, flux, grype, lazygit, cerbos, dagger, trufflehog, kubevela, crossplane-provider-aws-cloudformation, flux-source-controller, guac, terraform-provider-azurerm, crossplane-provider-aws-elasticache, extism, cilium-cli,...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: terragrunt, boring-registry, flux, grype, lazygit, cerbos, dagger, trufflehog, kubevela, crossplane-provider-aws-cloudformation, flux-source-controller, guac, terraform-provider-azurerm, crossplane-provider-aws-elasticache, extism, cilium-cli,...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-kinesis, crossplane-provider-aws-cloudformation, crossplane-provider-aws-lambda, helm-fips, grafana, gitness, actions-runner-controller, kyverno-notation-aws, gitea-fips, argo-rollouts, cloudbeat, kubevela,...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-lambda, buf, crossplane-provider-aws-cloudformation, crossplane-provider-azure, actions-runner-controller, kubernetes-csi-livenessprobe-fips, crossplane-provider-family-azure, nri-prometheus, falcosidekick-fips, slsa-verifier, vexctl, hugo, mc...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: k3d, up, buildkitd, spark-operator, kubeflow, slsa-verifier, cortex, falco, terraform-provider-sendgrid, kubevela, src, scorecard, prometheus-blackbox-exporter, kubescape, aactl, dgraph...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: cortex, kubeflow, prometheus-blackbox-exporter, smarter-device-manager-fips, vault-csi-provider, src, dgraph, kubevela, k3d, kubernetes-csi-livenessprobe-fips, kubernetes-csi-livenessprobe, dynamic-localpv-provisioner-fips, kubescape, cluster-autoscaler-fips,...
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: kubeflow-katib, kubernetes-csi-livenessprobe, sigstore-scaffolding, mc, grype, metrics-server, stakater-reloader, gobuster, minio, cortex, kubevela, wireguard-go, fuse-overlayfs-snapshotter, secrets-store-csi-driver-provider-gcp, flux-source-controller, ollama,...