-
## Description
It was found that the number of vulnerabilities detected when scanning a `Windows 11 Pro` is not the same when using `4.7.5` or `4.8.2`.
We need to complete a table that resembles t…
-
Hi Crowdsec Team, first of all thanks for this great product, I used it a lot in the past months and really liked it.
Unfortunately this image as well as the kubernetes lapi and deamonsets expose a …
-
In an effort to improve our rate of dependency bumps and CVE fixes, we would like more visibility into our scan results on each PR to the k3s project. This will likely involve a new GHA or something t…
-
#### What happened:
CVE in `registry.k8s.io/build-image/distroless-iptables:v0.6.2` image
```bash
➜ trivy image --exit-code 1 --ignore-unfixed --severity MEDIUM,HIGH,CRITICAL registry.k8s.io/…
-
With KF 1.9, the Platform (KF/Manifest) team is introducing CVE reporting.
ref: https://blog.kubeflow.org/kubeflow-1.9-release/#cve-scanning
Since https://github.com/kubeflow/manifests/pull/2860 i…
-
I would like to use this tool to scan a preexisting spdx file, but the scanner can't find my file called 'SBOM.spdx'. The config used is:
- name: Scan SBOM with cve-bin-tool
uses: in…
-
OSV currently includes Alpine's fixed vulnerabilities (from [Alpine secdb](https://secdb.alpinelinux.org/)) in its CVE records, but it's missing information about unfixed vulnerabilities from [Alpine'…
-
**Is your feature request related to a problem? Please describe.**
Some image dependencies for rancher-logging have recently been updated to fix CVE reports:
https://github.com/rancherlabs/image-s…
-
https://github.com/networkservicemesh/deployments-k8s/security
- [x] Update go to v1.23 locally (code)
- [x] Update go to v1.23 locally (base image)
- [ ] Update go to v1.23 (sdk)
- [x] Provide re…
-
**Is your feature request related to a problem? Please describe.**
Some image dependencies for rancher-monitoring have recently been updated to fix CVE reports:
https://github.com/rancherlabs/imag…