Closed NeoWilson closed 3 months ago
Golang bumps are performed automatically and this CVE will be covered during the bumps as well. Thank you for raising this issue. I'd prefer closing this as we don't do anything in oc.
/close
@ardaguclu: Closing this issue.
I recently scan my image that uses this tool with Trivy container scanner and found this new CVE-2024-24790. After investigation, it is seem that the vulnerability is due to the older version of Golang being used.