github.com/fluxcd/kustomize-controller is vulnerable to denial of service. An attacker can access files outside the expected directory via a malicious kustomization.yaml
and cause an application crash at the controller level.
github.com/fluxcd/flux2/commit/5536af9756b6a55139855b385b557f3f92ffca14
github.com/fluxcd/flux2/pull/2611
github.com/fluxcd/flux2/security/advisories/GHSA-7pwf-jg34-hxwp
github.com/fluxcd/kustomize-controller/commit/39872cd02f2354360e8dc5323a251c5435e03eb6
github.com/fluxcd/kustomize-controller/pull/620