Closed heyselbi closed 11 months ago
rest-proxy (community):
rest-proxy (odh):
Modelmesh updates:
odh-model-controller:
github.com/openshift/api Authentication Bypass Using an Alternate Path or Channel
Remove the permissions to update, patch the pods/ephemeralcontainers subresource from any low-privileged users, if there are any that currently hold it.
odh-model-controller
does not expose the given resource through rbac.github.com/elazarl/goproxy Denial of Service (DoS)
Container Image:
otelhttp fixes:
modelmesh-serving:
modelmesh-runtime-adapter:
Migrated to https://github.com/opendatahub-io/modelmesh-serving/issues/256 As it depends on https://github.com/kserve/modelmesh-runtime-adapter/pull/68
Address 14 high vulnerabilities in MM repos, upstream first. There are no critical vulnerabilities.
5 in modelmesh-runtime-adapter(highly recommended but not required) Address quay.io vulnerabilities: