17 matches found
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: kyverno, trivy-operator, tfsec, xeol, flux-source-controller, argo-events, dagger, gitsign, gomplate, teleport, argo-workflows, flux, crossplane, cerbos, flux-image-automation-controller, grafana-alloy, external-secrets-operator, kargo, pulumi-language-dotnet, syft,...
CVE-2026-45022 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, mapotf-fips, grype-db, gitlab-runner-fips, argocd-image-updater-fips, tfsec, bom, osv-scanner, nfpm, grafana-alloy, gitlab-runner, argo-workflows-fips, wolfictl, zarf-fips, kaniko, kubevela, src-fingerprint, grype, nuclei, witness, trivy-fips,...
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, mapotf-fips, grype-db, gitlab-runner-fips, argocd-image-updater-fips, tfsec, bom, osv-scanner, nfpm, grafana-alloy, gitlab-runner, argo-workflows-fips, wolfictl, zarf-fips, kaniko, kubevela, src-fingerprint, grype, nuclei, witness, trivy-fips,...
CLEANSTART-2026-FO49462 Security fixes for ghsa-3xc5-wrhm-f963 applied in versions: 1.31.1-r0
Security vulnerability affects the pulumi-language-yaml package. This issue is resolved in later releases. See references for vulnerability details...
GHSA-GM2X-2G9H-CCM8 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, grype-db, gitlab-runner-fips, argocd-image-updater-fips, tfsec, bom, osv-scanner, nfpm, grafana-alloy, gitlab-runner, argo-workflows-fips, wolfictl, zarf-fips, kaniko, kubevela, src-fingerprint, grype, nuclei, witness, trivy-fips, zarf, gomplate...
CVE-2026-34165 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, grype-db, gitlab-runner-fips, argocd-image-updater-fips, tfsec, bom, osv-scanner, nfpm, grafana-alloy, gitlab-runner, argo-workflows-fips, wolfictl, zarf-fips, kaniko, kubevela, src-fingerprint, grype, nuclei, witness, trivy-fips, zarf, gomplate...
GHSA-JHF3-XXHW-2WPP vulnerabilities
Vulnerabilities for packages: kyverno, trivy-operator, tfsec, xeol, flux-source-controller, argo-events, dagger, gitsign, gomplate, teleport, argo-workflows, flux, crossplane, chezmoi, cerbos, flux-image-automation-controller, grafana-alloy, external-secrets-operator, kargo, pulumi-language-dotne...
CVE-2026-33762 vulnerabilities
Vulnerabilities for packages: kyverno, trivy-operator, tfsec, xeol, flux-source-controller, argo-events, dagger, gitsign, gomplate, teleport, argo-workflows, flux, crossplane, chezmoi, cerbos, flux-image-automation-controller, grafana-alloy, external-secrets-operator, kargo, pulumi-language-dotne...
GHSA-GM2X-2G9H-CCM8 vulnerabilities
Vulnerabilities for packages: kyverno, trivy-operator, tfsec, xeol, flux-source-controller, argo-events, dagger, gitsign, gomplate, teleport, argo-workflows, flux, crossplane, chezmoi, cerbos, flux-image-automation-controller, grafana-alloy, external-secrets-operator, kargo, pulumi-language-dotne...
CVE-2026-34165 vulnerabilities
Vulnerabilities for packages: kyverno, trivy-operator, tfsec, xeol, flux-source-controller, argo-events, dagger, gitsign, gomplate, teleport, argo-workflows, flux, crossplane, chezmoi, cerbos, flux-image-automation-controller, grafana-alloy, external-secrets-operator, kargo, pulumi-language-dotne...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: lazygit, crossplane-provider-aws-iam, crossplane-provider-azure-sql, grafana-alloy, crossplane-provider-aws-cloudwatchlogs, syft, kyverno-notation-aws, nuclei, crossplane-provider-aws-eks, crossplane-provider-aws-memorydb, scorecard, openbao,...
GHSA-Q9HV-HPM4-HJ6X vulnerabilities
Vulnerabilities for packages: lazygit, crossplane-provider-aws-iam, crossplane-provider-azure-sql, grafana-alloy, crossplane-provider-aws-cloudwatchlogs, syft, kyverno-notation-aws, nuclei, crossplane-provider-aws-eks, crossplane-provider-aws-memorydb, scorecard, openbao,...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-ecr, gitlab-rails-ce-fips, crossplane-provider-aws-cloudformation-fips, kyverno-notation-aws-fips, gitlab-operator-fips, grype-db, gitlab-runner-fips, argocd-image-updater-fips, crossplane-provider-aws-iam-fips, tfsec,...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: velero, cluster-autoscaler, tekton-chains, keda-fips, crossplane-provider-azure-authorization, osv-scanner, bank-vaults-fips, protoc-gen-go-grpc, volume-modifier-for-k8s-fips, argo-workflows-fips, prometheus-node-exporter, datadog-agent, kubernetes-dashboard-fips,...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: aactl, slsa-verifier, kubevela, falco, src, spark-operator, cortex, dgraph, buildkitd, prometheus-blackbox-exporter, kubeflow, kubescape, scorecard, up, terraform-provider-sendgrid, k3d...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: cluster-autoscaler-fips, dgraph, kubescape, prometheus-adapter-fips, kubeflow-fips, vault-csi-provider, falco, scorecard, bank-vaults-fips, buildkitd, k3d, smarter-device-manager-fips, terraform-provider-sendgrid, volume-modifier-for-k8s-fips, src, slsa-verifier,...
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: secrets-store-csi-driver, terraform, external-dns, hugo, nri-prometheus, scorecard, slsa-verifier, nats, aws-efs-csi-driver, ko, hey, cortex, mc, oauth2-proxy, pulumi, pulumi-language-java, grpcurl, sigstore-scaffolding, prometheus-adapter, terraform-provider-sendgri...