-
### What happened?
When creating Docker container for the first time, you can see some warnings/errors in logs like
```
time="2024-07-08T08:53:48Z" level=warning msg="scenario list is empty, will n…
-
A [user reports](https://github.com/wazuh/wazuh/issues/24306#issuecomment-2198126869) the following:
does these also work with other packages and also other distributions like redhat?
because it l…
-
I want to report a security issue. I also want to follow the desired steps on the dapr website for reporting security issues. However, emails are not getting through. I tried from a work account and a…
-
### 🐛 Describe the bug
Security analyzers report a critical CVE: https://www.cve.org/CVERecord?id=CVE-2024-5480
### Versions
2.2.2, 2.3.1
-
Hi,
Our scanner alerted us to the BusyBox CVEs being present on the latest version of image jonasal/nginx-certbot image.
The CVEs are:
- https://www.cve.org/CVERecord?id=CVE-2023-42366
- htt…
-
Following the inclusion of your plugin within a NextFlow (24.04.2) container that I am building, a scan of the container detected an issue with the following packages:
- io.netty/netty-codec-http2 …
-
### Checklist
- [X] I agree to follow the [Code of Conduct](https://github.com/flatpak/flatpak/blob/main/CODE_OF_CONDUCT.md) that this project adheres to.
- [X] I have searched the [issue tracker](ht…
-
- [x] `v0.20.0`: [link](https://hub.docker.com/layers/bitcoindevproject/bitcoin/v0.20.0/images/sha256-11229858896f6be7ea742a02b2d6ec1805bd54f6d91c867fc4321617a9180d22?context=repo) (currently `amd64` …
-
Hi team. 👋🏼
Are you planning a CVE assignment for this security issue involving the v1.2.2 susceptible to zstd decompression bombing DoS (https://github.com/mostynb/go-grpc-compression/security/a…
-
Please assess and address the CVE-2024-39249 in Async 3.2.5
## CVE-2024-39249 - Medium Severity Vulnerability
Vulnerable Library - async-3.2.5.tgz
Library home page: https://registry.npmjs.o…