github.com/fluxcd/flux2 is vulnerable to path traversal. The vulnerability exists because the library does not properly handle the user-supplied input, allowing an attacker to access files outside the expected directory and replace the flux deployment information with arbitrary content.