-
The current OSV structure combines vulnerability data from different resources (e.g., NVD, Alpine, Debian) into a [single CVE entry ](https://osv.dev/vulnerability/CVE-2024-28757) based on shared CVE …
-
Hi. I Can't see a way of making a feature request, so will open an issue.
We currently partition our cluster up into namespaces, using Kubernetes RBAC to limit what a user can do in a namespace. We…
-
In dnf4, `list upgrades` accepts the following options:
--bugfix
--enhancement
--newpackage
--security
--advisory
--bz
--cve
--sec-severity
Dnf5 should filter the upgrades using these opt…
-
sudo security update
Severity: moderate
Description
The sudo packages contain the sudo utility which allows system
administrators to provide certain users with the permission to execute
privileged…
-
```
ghcr.io/wmo-im/wis2box-api:latest (ubuntu 22.04)
================================================
Total: 16 (HIGH: 16, CRITICAL: 0)
┌────────────────┬────────────────┬──────────┬────────┬───…
-
qpid-proton security update
Severity: important
Description
AlmaLinux Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity …
-
Is there any way to ignore transitive dependencies in the SBOM scan and include direct dependencies only?
In spdx there is a way to ignore the transitive dependencies in plugin configuration. is ther…
-
# Description
A [user](https://wazuh.slack.com/archives/C07CCCCGHHP/p1726500297099159) reported that the scanner was not working properly
After troubleshooting, the user shared the configuratio…
-
## Vulnerabilities found for kfam:1.9.0
```
For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your project that y…
-
Hello! We are currently using `k8ssandra-operator` to deploy Cassandra 3.11.12 (serverVersion: 3.11.12) in AWS EKS.
Our Cassandra Servers are working fine so far. However, with the release of Cassan…