CVE-2026-35469 vulnerabilities

Vulnerabilities for packages: docker-cli-buildx-fips, k8ssandra-client, jitsucom-bulker, cert-manager-istio-csr, rancher-agent, velero, gpu-operator-fips, redis-operator-fips, teleport, eck-operator, cloudbeat-fips, kiali, velero-fips, headlamp, argo-cd-fips, eksctl, hubble-fips, hubble,...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: terragrunt, buildkitd, crossplane-provider-aws-lambda, policy-controller, crossplane-provider-aws-ec2, tfsec, sops, gomplate, rancher-fleet, src-fingerprint, zot, rclone, zarf, external-secrets-operator, gitlab-runner, gptscript, crossplane-provider-aws-s3,...

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: terragrunt, buildkitd, crossplane-provider-aws-lambda, policy-controller, crossplane-provider-aws-ec2, tfsec, sops, gomplate, rancher-fleet, src-fingerprint, zot, rclone, zarf, external-secrets-operator, gitlab-runner, gptscript, crossplane-provider-aws-s3,...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps 1.16.1 security release

Errata advisory for Red Hat OpenShift GitOps 1.16.1 security release. The Red Hat OpenShift GitOps 1.16.1 release provides security updates to the Argo CD CLI, Argo Rollouts CLI and MicroShift GitOps. Security Fixes: openshift-gitops-1/argocd-rhel9: Improper URL Sanitization in Argo CD Repository...

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: temporal-ui-server, nri-nginx, thanos-operator, vendir, src-fingerprint, redka, vault-k8s, timoni, amazon-k8s-cni, kubernetes-release, hcloud, sftpgo-plugin-eventsearch, dive, terraform-docs, opa-envoy, prometheus-pushgateway, go-md2man, k6, prometheus-alertmanager,...

GHSA-3F6R-QH9C-X6MM vulnerabilities

Vulnerabilities for packages: temporal-ui-server, nri-nginx, thanos-operator, vendir, src-fingerprint, redka, vault-k8s, timoni, amazon-k8s-cni, kubernetes-release, hcloud, sftpgo-plugin-eventsearch, dive, terraform-docs, opa-envoy, prometheus-pushgateway, go-md2man, k6, prometheus-alertmanager,...

GHSA-29QP-CRVH-W22M vulnerabilities

Vulnerabilities for packages: spire-server, crossplane-provider-family-azure, terragrunt, kafka-proxy, crossplane-provider-aws-sns, crossplane-provider-family-aws, crossplane-provider-azure-storage, crossplane-provider-aws-lambda, terraform-provider-azurerm, argo-rollouts, sftpgo-plugin-eventstor...