CLEANSTART-2026-MW24969 Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33186, CVE-2026-33810, CVE-2026-39883, ghsa-9h8m-3fm2-qjrq, ghsa-p77j-4mvh-x3m3 applied in versions: 1.28.1-r0, 1.28.1-r1, 1.28.1-r2

Multiple security vulnerabilities affect the cass-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-BA09462 OpenTelemetry-Go is the Go implementation of OpenTelemetry

Multiple security vulnerabilities affect the cass-operator-fips package. OpenTelemetry-Go is the Go implementation of OpenTelemetry. See references for individual vulnerability details...

CLEANSTART-2026-CP95927 Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-9h8m-3fm2-qjrq, ghsa-p77j-4mvh-x3m3 applied in versions: 1.28.1-r0, 1.28.1-r1

Multiple security vulnerabilities affect the cass-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: octo-sts, gostatsd, gitness, aws-privateca-issuer, oauth2-proxy, terraform-provider-time, nri-rabbitmq, sqlexporter, cfssl, overmind, conftest, gatekeeper, local-static-provisioner, protoc-gen-go, docker-credential-acr-env, containerd, golangci-lint, nri-consul,...

GHSA-G9PC-8G42-G6VQ vulnerabilities

Vulnerabilities for packages: octo-sts, gostatsd, gitness, aws-privateca-issuer, oauth2-proxy, terraform-provider-time, nri-rabbitmq, sqlexporter, cfssl, overmind, conftest, gatekeeper, local-static-provisioner, protoc-gen-go, docker-credential-acr-env, containerd, golangci-lint, nri-consul,...

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: trivy, kapp, restic-fips, caddy, crossplane-provider-azure-managedidentity, fulcio, http-echo, kube-bench, opa, ingress-nginx-controller, postgres-operator-fips, elastic-agent, google-osconfig-agent, kube-state-metrics, rabbitmq-messaging-topology-operator,...

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: k8ssandra-operator, octo-sts, gostatsd, secrets-store-csi-driver-provider-azure, gitness, aws-privateca-issuer, oauth2-proxy, nri-rabbitmq, sqlexporter, cfssl, overmind, cosign, conftest, local-static-provisioner, docker-credential-acr-env, containerd, thanos,...