GHSA-XM5M-WGH2-RRG3 vulnerabilities

Vulnerabilities for packages: witness, tekton-chains, goreleaser, falcoctl, docker, spire-server, cosign, trivy, neuvector-sigstore-interface, zarf, flux-source-controller, gh, ko, docker-cli-buildx, gitsign, kyverno, trivy-operator, buildkitd, vexctl, skaffold, policy-controller,...

CVE-2026-39984 vulnerabilities

Vulnerabilities for packages: witness, tekton-chains, goreleaser, falcoctl, docker, spire-server, cosign, trivy, neuvector-sigstore-interface, zarf, flux-source-controller, gh, ko, docker-cli-buildx, gitsign, kyverno, trivy-operator, buildkitd, vexctl, skaffold, policy-controller,...

GHSA-78H2-9FRX-2JM8 vulnerabilities

Vulnerabilities for packages: vexctl, kyverno-policy-reporter, oauth2-proxy-fips, consul-fips, kube-oidc-proxy, knative-eventing-fips, kubo, hydra-fips, elastic-agent, gcsfuse, rekor, kargo, sigstore-scaffolding, kiali-fips, cerbos-fips, packer-fips, minio-fips, commercial-chainloop-backend, kial...

CVE-2026-34986 vulnerabilities

Vulnerabilities for packages: vexctl, kyverno-policy-reporter, oauth2-proxy-fips, consul-fips, kube-oidc-proxy, knative-eventing-fips, kubo, hydra-fips, elastic-agent, gcsfuse, rekor, kargo, sigstore-scaffolding, kiali-fips, cerbos-fips, packer-fips, minio-fips, commercial-chainloop-backend, kial...

GHSA-4QG8-FJ49-PXJH vulnerabilities

Vulnerabilities for packages: kyverno-fips, docker-cli-buildx, vexctl, falcoctl-fips, cosign-fips, goreleaser, kyverno-notation-aws-fips, aactl, kyverno-notation-aws, image-factory-fips, chainctl, tkn, cloudbeat-fips, ko-fips, tflint-fips, kyverno-policy-reporter-plugins-kyverno-fips, tflint,...

CVE-2025-66564 vulnerabilities

Vulnerabilities for packages: kyverno-fips, docker-cli-buildx, vexctl, falcoctl-fips, cosign-fips, goreleaser, kyverno-notation-aws-fips, aactl, kyverno-notation-aws, image-factory-fips, chainctl, tkn, cloudbeat-fips, ko-fips, tflint-fips, kyverno-policy-reporter-plugins-kyverno-fips, tflint,...

CVE-2024-45395 vulnerabilities

Vulnerabilities for packages: cosign-fips, slsa-verifier, cosign, gh...

GHSA-CQ38-JH5F-37MQ vulnerabilities

Vulnerabilities for packages: cosign-fips, slsa-verifier, cosign, gh...

GHSA-C77R-FH37-X2PX vulnerabilities

Vulnerabilities for packages: kyverno-fips, cosign-fips, datadog-agent-fips, gatekeeper-fips, conftest, spire-server-fips, snyk-cli, gatekeeper, datadog-agent, cosign, opa, spire-server, policy-controller, kyverno, conftest-fips, zarf, zot, policy-controller-fips, k8sgpt, kubescape, kots, tfsec...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: rancher-machine, helm-fips, kpt, vexctl, falcoctl-fips, cosign-fips, goreleaser, k3d, datadog-agent-fips, cadvisor, cri-tools, ctop, aactl, k3s, kubeflow-katib, kubevela, timoni, k9s, flux-helm-controller, nerdctl, ko-fips, falco, pulumi, trivy, cadvisor-fips,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: rancher-machine, helm-fips, kpt, vexctl, falcoctl-fips, cosign-fips, goreleaser, k3d, datadog-agent-fips, cadvisor, cri-tools, ctop, aactl, k3s, kubeflow-katib, kubevela, timoni, k9s, flux-helm-controller, nerdctl, ko-fips, falco, pulumi, trivy, cadvisor-fips,...

GHSA-9763-4F94-GFCH vulnerabilities

Vulnerabilities for packages: gitness, crossplane-provider-aws-rds, falcoctl-fips, cosign-fips, flux-source-controller, goreleaser, pulumi-language-dotnet, vexctl, crossplane-provider-aws-eks, crossplane-provider-aws-s3, crossplane-provider-aws-cloudformation, aactl, actions-runner-controller,...

CVE-2023-49290 vulnerabilities

Vulnerabilities for packages: falco, vexctl, falcoctl-fips, cosign-fips, tekton-chains, falcoctl, kubescape, gitsign...