search

segmentio / topicctl

Tool for declarative management of Kafka topics
MIT License
590 stars 55 forks source link

CVE CVE-2022-32149 is reported by trivy tool #102

Closed noorul closed 1 year ago

noorul commented 1 year ago
Screenshot 2022-10-25 at 7 46 40 PM
hhahn-tw commented 1 year ago

Thank you for notifying us, we will be updating this soon.

noorul commented 1 year ago

Looks like dependabot config is removed.

hhahn-tw commented 1 year ago

dependabot security updates are enabled so it's puzzling why this CVE didn't trigger it.

hhahn-tw commented 1 year ago

Thanks again for the report, this has been patched

noorul commented 1 year ago

gr8 thanks @hhahn-tw