jkrafczyk
commented
2 years ago Is this project even affected by that? The CVE specifically refers to the golang.org/x/crypto/ssh package. I don't see any uses of that package in the kafka_exporter codebase.
do you plan to fix the this https://access.redhat.com/security/cve/CVE-2022-27191
regards