-
With KF 1.9, the Platform (KF/Manifest) team is introducing CVE reporting.
ref: https://blog.kubeflow.org/kubeflow-1.9-release/#cve-scanning
Since https://github.com/kubeflow/manifests/pull/2860 i…
-
**Is your enhancement related to a problem? Please describe.**
Harvester-network-controller imports Harvester and the go mod still stayed on v1.1.2-rc8
https://github.com/harvester/network-con…
-
**What happened**: After scanning one image with nodejs component (of 18 series) with version: 1:18.20.4-1.module+el9.4.0+22195+c221878e, reporting CVE-2024-27983 with fixed in version (of 20 series):…
-
Hi Crowdsec Team, first of all thanks for this great product, I used it a lot in the past months and really liked it.
Unfortunately this image as well as the kubernetes lapi and deamonsets expose a …
-
**What steps did you take and what happened:**
**1.** `docker pull ghcr.io/aquasecurity/trivy-operator:0.22.0`
**2.** `trivy image ghcr.io/aquasecurity/trivy-operator:0.22.0 --severity CRITICAL`…
-
Leverage bill of materials that lagoon generates.
Run in AWX?
Surface results in a report.
-
https://github.com/networkservicemesh/deployments-k8s/security
- [x] Update go to v1.23 locally (code)
- [x] Update go to v1.23 locally (base image)
- [x] Update go to v1.23 (sdk) - minimal changes v…
-
In version 3.3.2, more than 40 vulnerabilities are found container scanning tool, they almost all concern `jackson-databind` library.
Here is the list of corresponding CVE:
```
CVE-2020-9547 in …
-
[cvebintool.zip](https://github.com/user-attachments/files/17010992/cvebintool.zip)
### Description
Hello!
When scanning the application, the analysis will reach the file "rootpom.xml" and caus…
-
There are lots of high and critical vulnerabilities that were scanned by [trivy](https://github.com/aquasecurity/trivy).
The scanning result of cluster-autoscaler:v1.23.0 is as follows, v1.22.0 and v…