chore(deps): update all non-major dependencies #488

renovate · 2024-11-18T00:32:12Z

This PR contains the following updates:

Package	Type	Update	Change
FairwindsOps/polaris		minor	`9.5.0` -> `9.6.0`
aquasecurity/trivy		patch	`0.57.0` -> `0.57.1`
armosec/kubescape		patch	`3.0.18` -> `3.0.21`
checkov		patch	`==3.2.277` -> `==3.2.311`
controlplaneio/kubesec		patch	`2.14.1` -> `2.14.2`
docker.io/bitnami/kubectl (source)	final	patch	`1.31.2` -> `1.31.3`
hairyhenderson/gomplate		minor	`4.1.0` -> `4.2.0`
helm/helm		patch	`3.16.2` -> `3.16.3`
kyverno/kyverno		patch	`1.13.0` -> `1.13.1`
markdownlint-cli	dependencies	minor	`0.42.0` -> `0.43.0`
mikefarah/yq		patch	`4.44.3` -> `4.44.5`
stackrox/kube-linter		minor	`v0.6.8` -> `v0.7.1`

Release Notes

FairwindsOps/polaris (FairwindsOps/polaris)

`v9.6.0`

Compare Source

Changelog

913988e Bump github.com/fatih/color from 1.17.0 to 1.18.0 (#1081)
f281cd1 Bump k8s.io/api from 0.31.1 to 0.31.2 (#1077)
4b87baf Bump k8s.io/client-go from 0.31.1 to 0.31.2 (#1078)
62effa3 Bump sigs.k8s.io/controller-runtime from 0.19.0 to 0.19.1 (#1079)
4dd3a81 INSIGHTS-475 Add 3 new checks to polaris (#1082)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

aquasecurity/trivy (aquasecurity/trivy)

armosec/kubescape (armosec/kubescape)

`v3.0.21`

Compare Source

What's Changed

fix the repo scan got stuck bug by @jnathangreeg in https://github.com/kubescape/kubescape/pull/1758

Full Changelog: kubescape/kubescape@v3.0.20...v3.0.21

`v3.0.20`

Compare Source

What's Changed

some easy doc fixes by @craigbox in https://github.com/kubescape/kubescape/pull/1749
bump krew publish action by @matthyx in https://github.com/kubescape/kubescape/pull/1757
bump opa-utils version to fix apiVersion check by @jnathangreeg in https://github.com/kubescape/kubescape/pull/1756

Full Changelog: kubescape/kubescape@v3.0.19...v3.0.20

`v3.0.19`

Compare Source

What's Changed

Bump github.com/containers/common from 0.59.0 to 0.60.4 in /httphandler by @dependabot in https://github.com/kubescape/kubescape/pull/1742
Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 by @dependabot in https://github.com/kubescape/kubescape/pull/1753
Add a second condition in getFilesFromTree to ensure we are scanning the correct path by @jnathangreeg in https://github.com/kubescape/kubescape/pull/1752
Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 in /httphandler by @dependabot in https://github.com/kubescape/kubescape/pull/1754

New Contributors

@jnathangreeg made their first contribution in https://github.com/kubescape/kubescape/pull/1752

Full Changelog: kubescape/kubescape@v3.0.18...v3.0.19

bridgecrewio/checkov (checkov)

`v3.2.311`

Bug Fix

cloudformation: Fixed issue where Ref was not rendered correctly if the parameter name was identical to the default value - #6856
secrets: fix find line - #6864
secrets: masking test format - #6859
secrets: multiline matches show the secret and not the first line - #6854

`v3.2.310`

`v3.2.309`

`v3.2.308`

`v3.2.307`

Bug Fix

arm: Change ARM graph creation log lvl to debug - #6857

`v3.2.306`

`v3.2.305`

Feature

sca: support java full dependency tree scan - #6834
terraform: Add check - ensure AWS CodeGuru resource contains CMK - #6851

Bug Fix

general: Used jsonpath to update vertex attributes - #6852
terraform: Update EKS supported versions - #6826
terraform: Update CKV_AZURE_171 to check automatic_upgrade_channel - #6756

`v3.2.304`

`v3.2.303`

`v3.2.302`

`v3.2.301`

Bug Fix

secrets: skip empty match - #6849

`v3.2.300`

Feature

azure: add new policies for Azure Synapse arm - #6553
helm: Made helm + kustomize use the Kubernetes graph registry - #6847
secrets: Adding check_id to EnrichedSecret class - #6842
secrets: Masking secrets files - #6848

Bug Fix

secrets: add prerun support for singleline - #6846
terraform: Update CKV_AZURE_167 to correct check on retention policy - #6758

`v3.2.299`

`v3.2.298`

`v3.2.297`

`v3.2.296`

Feature

cloudformation: Support Fn::Sub in cases of using a pseudo parameter - #6835
terraform: support resource_type attribute - revert - #6843

Bug Fix

terraform: CKV_GCP_32 (GoogleComputeBlockProjectSSH) Add other common enabling values - #6663

`v3.2.295`

`v3.2.294`

`v3.2.293`

Feature

terraform: support resource_type attribute - #6830

Bug Fix

general: fixed mypy issue - #6838

`v3.2.292`

`v3.2.291`

Feature

general: remove specific botocore version - #6796

Bug Fix

arm: fix ARM graph block types - #6824
dockerfile: Handle heredoc - #6828
sast: filter unsupported policies - #6833

`v3.2.290`

`v3.2.289`

`v3.2.288`

`v3.2.287`

Bug Fix

graph: fix internal checks loading when adding custom policies in cli - #6819

`v3.2.286`

Feature

secrets: Add npm detector - #6821

Bug Fix

secrets: fix empty diff scan - #6822

`v3.2.285`

`v3.2.284`

`v3.2.283`

`v3.2.282`

Bug Fix

arm: finish variable rendering and use definitions context - #6814

`v3.2.281`

Documentation

general: Update Python versions and add env vars to the docs - #6812

`v3.2.280`

Bug Fix

arm: add middleware function for platform integration for Arm definitions - #6811
secrets: Update CKV_SECRET_4 to duplication list GENERIC_PRIVATE_KEY - #6810
terraform: Add opensearch to CKV2_AWS_5 - #6807

`v3.2.279`

`v3.2.278`

Bug Fix

arm: Align arm definitions function arguments - #6808

controlplaneio/kubesec (controlplaneio/kubesec)

`v2.14.2`

Compare Source

Bump dependencies
- thanks @jdesouza

hairyhenderson/gomplate (hairyhenderson/gomplate)

`v4.2.0`

Compare Source

Features

config: Allow avoiding reading default config file (#2227) (18791a4)

Bug Fixes

datasources: Properly handle datasources and other URLs beginning with '../' (#2255) (53d6ca0)
lint: Address new lint warnings from golangci-lint 1.62 (#2256) (a13844c)
lint: Fix or ignore lint errors (#2228) (69d3e0c)
strings: Avoid potential overflow on 32-bit systems (#2257) (1bd86d8)

Documentation

fix: Fix example output for coll.Merge (#2252) (60a575f)
fix: Minor fix in documentation related to --exclude-processing (#2238) (52abefa)
links: Fix broken link (#2254) (7e64928)

Dependencies

actions: Bump docker/login-action from 3.2.0 to 3.3.0 (#2189) (8f40d1f)
actions: Bump docker/setup-buildx-action from 3.4.0 to 3.6.1 (#2198) (71f53aa)
actions: Bump docker/setup-buildx-action from 3.6.1 to 3.7.1 (#2233) (f908325)
actions: Bump docker/setup-qemu-action from 3.1.0 to 3.2.0 (#2188) (2869ba1)
docker: Bump golang from 1.22-alpine to 1.23-alpine (#2212) (8946529)
go: Bump cuelang.org/go from 0.9.2 to 0.10.1 (#2241) (ca531f2)
go: Bump github.com/aws/aws-sdk-go from 1.54.15 to 1.54.16 (#2172) (19cd050)
go: Bump github.com/aws/aws-sdk-go from 1.54.16 to 1.55.5 (#2200) (6cdc97d)
go: Bump github.com/hairyhenderson/go-fsimpl from 0.1.7 to 0.1.8 (#2243) (d464787)
go: Bump github.com/hashicorp/go-sockaddr from 1.0.6 to 1.0.7 (#2229) (bcb33a2)
go: Bump github.com/hashicorp/vault/api from 1.14.0 to 1.15.0 (#2223) (2e06943)
go: Bump github.com/hashicorp/vault/api/auth/aws (#2224) (87edb20)
go: Bump github.com/lmittmann/tint from 1.0.4 to 1.0.5 (#2178) (cb30e90)
go: Bump github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.0 (#2216) (8d8d696)
go: Bump github.com/Shopify/ejson from 1.5.2 to 1.5.3 (#2247) (2622800)
go: Bump golang.org/x/crypto from 0.25.0 to 0.27.0 (#2221) (33faeb3)
go: Bump golang.org/x/crypto from 0.27.0 to 0.29.0 (#2248) (94716fc)
go: Bump golang.org/x/sys from 0.22.0 to 0.24.0 (#2209) (9900424)
go: Bump golang.org/x/term from 0.22.0 to 0.24.0 (#2219) (ab5d4ad)
go: Bump golang.org/x/text from 0.16.0 to 0.17.0 (#2207) (9ab0fc9)
go: Bump golang.org/x/text from 0.17.0 to 0.18.0 (#2220) (8c16576)
go: Bump google.golang.org/grpc in the go_modules group (#2175) (836cbf0)
go: Bump k8s.io/client-go from 0.30.2 to 0.30.3 (#2183) (e13e016)
go: Bump k8s.io/client-go from 0.30.3 to 0.31.1 (#2225) (c60a045)
go: Bump k8s.io/client-go from 0.31.1 to 0.31.2 (#2242) (e080b07)

helm/helm (helm/helm)

`v3.16.3`: Helm v3.16.3

Compare Source

Helm v3.16.3 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.3. The common platform binaries are here:

MacOS amd64 (checksum / 495d75b404a96fb664f1ca3f8cb01db2210aacc62dbfa1bbab30916abbb20a57)
MacOS arm64 (checksum / 3a39f690173086e6eea17674751eb3c8b970c02697e49cecd4093eaa3cf89dcd)
Linux amd64 (checksum / f5355c79190951eed23c5432a3b920e071f4c00a64f75e077de0dd4cb7b294ea)
Linux arm (checksum / 02ba2f3b1524113f49be6df25a0b4b3190010d6e218c8e2b2fde4578a8439a9c)
Linux arm64 (checksum / 5bd34ed774df6914b323ff84a0a156ea6ff2ba1eaf0113962fa773f3f9def798)
Linux i386 (checksum / 70318f60fec3219680fff86c9293e2a92fb8b9a691d41791661074588f22768e)
Linux ppc64le (checksum / 266f7698c56a724fddd3a2f2b862ad496c4338dce79f0282fdbc6e23e1738608)
Linux s390x (checksum / bac414c409faead9c2b8af11d29281aa4f1aeb9139c62d5178baf982d71fc9bb)
Linux riscv64 (checksum / 492843d2584bb14bd38a735a9708af2d7f3ea7e1b6c43e650968f16fce0b5064)
Windows amd64 (checksum / 1a52aa56e55168c3d3d2e45fa833a32290e4e3790559851dce1e707eb7728b81)
Windows arm64 (checksum / 247a63269a83bb73c14e8f62b0cfd5a2e1d32b7d3f93977d3a6ef3902d218ff1)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

3.16.4 is the next patch release and will be on December 11, 2024
3.17.0 is the next feature release and will be on January 15, 2025

Changelog

fix: fix label name cfd0749 (wangjingcun)
Fix typo in pkg/lint/rules/chartfile_test.go a303060 (Zach Burgess)
Increasing the size of the runner used for releases. ab45e8a (Matt Farina)
fix(hooks): correct hooks delete order 19fe320 (Suleiman Dibirov)
Bump github.com/containerd/containerd from 1.7.12 to 1.7.23 4fcc5c2 (dependabot[bot])

kyverno/kyverno (kyverno/kyverno)

`v1.13.1`

Compare Source

✨ Added ✨

Added the validation check for webhook configurations using CEL (#11461)

🐛 Fixed 🐛

Skipped Azure keychain-based login for MCR registry (#11480)
Fixed a validate issue to match failure action case-insensitively when validating an old object (#11486)
Fixed the missing emitWarning field in the v2beta1 policy (#11489)
Fixed the CLI to support VAP stable version v1 (#11501)
Fixed the auto-gen rules regarding celPreconditions (#11503)
Fixed a CLI issue by setting the default namespace for namespaced policies (#11505)
Fixed the configurable namespaceSelector list in the webhook (#11516)
Fixed an issue that the image verification rule blocks resource's update (#11529)
Fixed the policy validation message to include keywords "immutable fields" (#11549)
Fixed a panic issue for the admission controller when processing the validate rule (#11550)

Helm

Corrected Helm configuration behavior for global image registry (#11482)

🔧 Others 🔧

Switched to use the digest instead of the tag (#11492)

igorshubovych/markdownlint-cli (markdownlint-cli)

`v0.43.0`

Compare Source

mikefarah/yq (mikefarah/yq)

`v4.44.5`

Compare Source

Format comments with a gray foreground (Thanks @gabe565)
Fixed handling of nulls with sort_by expressions #2164
Force no color output when NO_COLOR env presents (Thanks @narqo)
Fixed array subtraction update bug #2159
Fixed index out of range error
Can traverse straight from parent operator (parent.blah)
Bumped dependencies

Note: 4.44.4 was skipped as it had a release pipeline failure

stackrox/kube-linter (stackrox/kube-linter)

`v0.7.1`

Compare Source

What's Changed

Other Changes

chore(deps): remove replace in go.mod by @rhybrillou in https://github.com/stackrox/kube-linter/pull/863

Full Changelog: stackrox/kube-linter@v0.7.0...v0.7.1

`v0.7.0`

Compare Source

What's Changed

🚀 Features

Update unset-memory-requirements and unset-cpu-requirements by @bgalek in https://github.com/stackrox/kube-linter/pull/734

🐛 Bug Fixes

Use a real check in example by @porridge in https://github.com/stackrox/kube-linter/pull/770

🧰 Maintenance

fix: remove darwin shell hack in Makefile by @janisz in https://github.com/stackrox/kube-linter/pull/810

Other Changes

build(deps): bump helm.sh/helm/v3 from 3.14.1 to 3.14.2 by @dependabot in https://github.com/stackrox/kube-linter/pull/733
chore: fix released files by @janisz in https://github.com/stackrox/kube-linter/pull/732
build(deps): bump docker/setup-buildx-action from 3.0.0 to 3.1.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/737
build(deps): bump codecov/codecov-action from 4.0.1 to 4.1.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/738
build(deps): bump github.com/cert-manager/cert-manager from 1.14.2 to 1.14.3 by @dependabot in https://github.com/stackrox/kube-linter/pull/736
build(deps): bump github.com/golangci/golangci-lint from 1.56.1 to 1.56.2 by @dependabot in https://github.com/stackrox/kube-linter/pull/735
build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/740
build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.71.2 to 0.72.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/741
build(deps): bump github.com/kedacore/keda/v2 from 2.13.0 to 2.13.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/742
build(deps): bump gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.3 by @dependabot in https://github.com/stackrox/kube-linter/pull/743
build(deps): bump github.com/cert-manager/cert-manager from 1.14.3 to 1.14.4 by @dependabot in https://github.com/stackrox/kube-linter/pull/744
build(deps): bump docker/login-action from 3.0.0 to 3.1.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/745
build(deps): bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/749
build(deps): bump helm.sh/helm/v3 from 3.14.2 to 3.14.3 by @dependabot in https://github.com/stackrox/kube-linter/pull/752
build(deps): bump github.com/golangci/golangci-lint from 1.56.2 to 1.57.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/751
build(deps): bump github.com/docker/docker from 24.0.7+incompatible to 24.0.9+incompatible by @dependabot in https://github.com/stackrox/kube-linter/pull/753
build(deps): bump the k8s-io group with 4 updates by @dependabot in https://github.com/stackrox/kube-linter/pull/750
build(deps): bump github.com/golangci/golangci-lint from 1.57.0 to 1.57.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/754
build(deps): bump github.com/owenrumney/go-sarif/v2 from 2.3.0 to 2.3.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/755
build(deps): bump codecov/codecov-action from 4.1.0 to 4.1.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/756
build(deps): bump github.com/golangci/golangci-lint from 1.57.1 to 1.57.2 by @dependabot in https://github.com/stackrox/kube-linter/pull/758
build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.72.0 to 0.73.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/761
build(deps): bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/762
build(deps): bump codecov/codecov-action from 4.1.1 to 4.3.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/763
build(deps): bump github.com/sigstore/cosign/v2 from 2.2.1 to 2.2.4 by @dependabot in https://github.com/stackrox/kube-linter/pull/764
build(deps): bump helm.sh/helm/v3 from 3.14.3 to 3.14.4 by @dependabot in https://github.com/stackrox/kube-linter/pull/766
build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.73.0 to 0.73.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/767
build(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/768
build(deps): bump the k8s-io group with 4 updates by @dependabot in https://github.com/stackrox/kube-linter/pull/765
build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.73.1 to 0.73.2 by @dependabot in https://github.com/stackrox/kube-linter/pull/772
build(deps): bump github.com/cert-manager/cert-manager from 1.14.4 to 1.14.5 by @dependabot in https://github.com/stackrox/kube-linter/pull/774
build(deps): bump codecov/codecov-action from 4.3.0 to 4.3.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/775
build(deps): bump github.com/golangci/golangci-lint from 1.57.2 to 1.58.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/776
build(deps): bump the k8s-io group with 4 updates by @dependabot in https://github.com/stackrox/kube-linter/pull/771
build(deps): bump codecov/codecov-action from 4.3.1 to 4.4.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/780
build(deps): bump github.com/golangci/golangci-lint from 1.58.0 to 1.58.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/779
build(deps): bump the k8s-io group with 4 updates by @dependabot in https://github.com/stackrox/kube-linter/pull/777
build(deps): bump github.com/golangci/golangci-lint from 1.58.1 to 1.58.2 by @dependabot in https://github.com/stackrox/kube-linter/pull/782
build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/781
build(deps): bump helm.sh/helm/v3 from 3.14.4 to 3.15.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/783
build(deps): bump codecov/codecov-action from 4.4.0 to 4.4.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/784
chore(deps): bump github.com/golangci/golangci-lint from 1.58.2 to 1.59.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/788
chore(deps): bump helm.sh/helm/v3 from 3.15.0 to 3.15.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/789
chore(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.73.2 to 0.74.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/787
ROX-24419: Use rhacs-bot by @gavin-stackrox in https://github.com/stackrox/kube-linter/pull/785
chore(deps): bump docker/login-action from 3.1.0 to 3.2.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/786
chore(deps): bump goreleaser/goreleaser-action from 5 to 6 by @dependabot in https://github.com/stackrox/kube-linter/pull/793
chore(deps): bump github.com/cert-manager/cert-manager from 1.14.5 to 1.15.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/792
chore(deps): bump github.com/spf13/viper from 1.18.2 to 1.19.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/790
chore(deps): bump helm.sh/helm/v3 from 3.15.1 to 3.15.2 by @dependabot in https://github.com/stackrox/kube-linter/pull/796
chore(deps): bump codecov/codecov-action from 4.4.1 to 4.5.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/798
chore(deps): bump the k8s-io group with 4 updates by @dependabot in https://github.com/stackrox/kube-linter/pull/797
chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/795
chore(deps): bump github.com/hashicorp/go-retryablehttp from 0.7.6 to 0.7.7 by @dependabot in https://github.com/stackrox/kube-linter/pull/799
chore(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.74.0 to 0.75.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/801
chore(deps): bump github.com/golangci/golangci-lint from 1.59.0 to 1.59.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/800
chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/803
chore(deps): bump github.com/cert-manager/cert-manager from 1.15.0 to 1.15.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/802
chore(deps): bump google.golang.org/grpc from 1.64.0 to 1.64.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/806
chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @dependabot in https://github.com/stackrox/kube-linter/pull/809
chore(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.75.0 to 0.75.1 by @dependabot in https://github.com/stackrox/kube-linter/pull/807
chore: remove deprecated configs in golang-ci lint by @dhaus67 in https://github.com/stackrox/kube-linter/pull/812
docs: update install section by @janisz in https://github.com/stackrox/kube-linter/pull/811
chore(deps): bump helm.sh/helm/v3 from 3.15.2 to 3.15.3 by @dependabot in https://github.com/stackrox/kube-linter/pull/814
chore(deps): bump github.com/owenrumney/go-sarif/v2 from 2.3.1 to 2.3.3 by @dependabot in https://github.com/stackrox/kube-linter/pull/808
chore: move tools to a separated module by @janisz in https://github.com/stackrox/kube-linter/pull/816
Create SECURITY.md by @janisz in https://github.com/stackrox/kube-linter/pull/817
chore(deps): bump docker/login-action from 3.2.0 to 3.3.0 by @dependabot in [https://github.com/stackro

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2024-11-18T00:35:05Z

🦙 MegaLinter status: ❌ ERROR

Descriptor	Linter	Files	Errors	Elapsed time
✅ ACTION	actionlint	4	0	0.02s
✅ BASH	bash-exec	4	0	0.01s
✅ BASH	shellcheck	4	0	0.11s
✅ BASH	shfmt	4	0	0.01s
✅ DOCKERFILE	hadolint	1	0	1.19s
✅ EDITORCONFIG	editorconfig-checker	47	0	0.04s
✅ JSON	jsonlint	4	0	0.16s
✅ JSON	npm-package-json-lint	yes	no	0.62s
✅ JSON	prettier	4	0	0.99s
✅ JSON	v8r	4	0	12.2s
⚠️ MARKDOWN	markdownlint	5	9	0.66s
✅ REPOSITORY	checkov	yes	no	21.85s
✅ REPOSITORY	devskim	yes	no	1.34s
✅ REPOSITORY	gitleaks	yes	no	0.1s
✅ REPOSITORY	git_diff	yes	no	0.01s
❌ REPOSITORY	grype	yes	1	15.98s
✅ REPOSITORY	kics	yes	no	16.06s
✅ REPOSITORY	secretlint	yes	no	0.93s
✅ REPOSITORY	syft	yes	no	0.26s
❌ REPOSITORY	trivy	yes	1	10.07s
✅ REPOSITORY	trivy-sbom	yes	no	0.09s
✅ REPOSITORY	trufflehog	yes	no	4.03s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

oxsecurity/megalinter/flavors/[email protected] (83 linters)

MegaLinter is graciously provided by

github-actions · 2024-11-23T23:16:50Z

Trivy image scan report

`ghcr.io/chgl/kube-powertools:pr-488 (ubuntu 22.04)`

125 known vulnerabilities found (HIGH: 0 MEDIUM: 90 LOW: 35 CRITICAL: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`bash`	CVE-2022-3715	MEDIUM	5.1-6ubuntu1	5.1-6ubuntu1.1
`bsdutils`	CVE-2024-28085	MEDIUM	1:2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`curl`	CVE-2024-7264	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.17
`curl`	CVE-2024-8096	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.18
`curl`	CVE-2024-9681	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.19
`libblkid1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`libc-bin`	CVE-2023-5156	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc-bin`	CVE-2024-2961	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.7
`libc-bin`	CVE-2024-33599	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2024-33600	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2024-33601	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2024-33602	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2023-4806	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc-bin`	CVE-2023-4813	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc6`	CVE-2023-5156	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc6`	CVE-2024-2961	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.7
`libc6`	CVE-2024-33599	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2024-33600	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2024-33601	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2024-33602	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2023-4806	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc6`	CVE-2023-4813	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libcurl3-gnutls`	CVE-2024-7264	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.17
`libcurl3-gnutls`	CVE-2024-8096	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.18
`libcurl3-gnutls`	CVE-2024-9681	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.19
`libcurl4`	CVE-2024-7264	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.17
`libcurl4`	CVE-2024-8096	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.18
`libcurl4`	CVE-2024-9681	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.19
`libexpat1`	CVE-2024-45490	MEDIUM	2.4.7-1ubuntu0.3	2.4.7-1ubuntu0.4
`libexpat1`	CVE-2024-45491	MEDIUM	2.4.7-1ubuntu0.3	2.4.7-1ubuntu0.4
`libexpat1`	CVE-2024-45492	MEDIUM	2.4.7-1ubuntu0.3	2.4.7-1ubuntu0.4
`libgnutls30`	CVE-2023-5981	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.3
`libgnutls30`	CVE-2024-0553	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.4
`libgnutls30`	CVE-2024-0567	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.4
`libgnutls30`	CVE-2024-28834	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.5
`libgnutls30`	CVE-2024-28835	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.5
`libgssapi-krb5-2`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libgssapi-krb5-2`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libgssapi-krb5-2`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libk5crypto3`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libk5crypto3`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libk5crypto3`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5-3`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libkrb5-3`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5-3`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5support0`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libkrb5support0`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5support0`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libmount1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`libpam-modules`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libpam-modules-bin`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libpam-runtime`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libpam0g`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libprocps8`	CVE-2023-4016	LOW	2:3.3.17-6ubuntu2	2:3.3.17-6ubuntu2.1
`libpython3.10-minimal`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-minimal`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-minimal`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-minimal`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`libpython3.10-minimal`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-minimal`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-stdlib`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-stdlib`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-stdlib`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`libpython3.10-stdlib`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-stdlib`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libsmartcols1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`libssl3`	CVE-2022-40735	MEDIUM	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.16
`libssl3`	CVE-2023-5363	MEDIUM	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2024-6119	MEDIUM	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.18
`libssl3`	CVE-2023-2975	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2023-3446	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2023-3817	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2023-5678	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2023-6129	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2023-6237	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2024-0727	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2024-2511	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libssl3`	CVE-2024-4603	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libssl3`	CVE-2024-4741	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libssl3`	CVE-2024-5535	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libuuid1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`login`	CVE-2023-4641	LOW	1:4.8.1-2ubuntu2.1	1:4.8.1-2ubuntu2.2
`mount`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`openssl`	CVE-2022-40735	MEDIUM	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.16
`openssl`	CVE-2024-6119	MEDIUM	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.18
`openssl`	CVE-2024-2511	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`openssl`	CVE-2024-4603	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`openssl`	CVE-2024-4741	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`openssl`	CVE-2024-5535	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`passwd`	CVE-2023-4641	LOW	1:4.8.1-2ubuntu2.1	1:4.8.1-2ubuntu2.2
`procps`	CVE-2023-4016	LOW	2:3.3.17-6ubuntu2	2:3.3.17-6ubuntu2.1
`python3-pip`	CVE-2024-37891	LOW	22.0.2+dfsg-1ubuntu0.4	22.0.2+dfsg-1ubuntu0.5
`python3-pkg-resources`	CVE-2024-6345	MEDIUM	59.6.0-1.2ubuntu0.22.04.1	59.6.0-1.2ubuntu0.22.04.2
`python3-setuptools`	CVE-2024-6345	MEDIUM	59.6.0-1.2ubuntu0.22.04.1	59.6.0-1.2ubuntu0.22.04.2
`python3.10`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`python3.10`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10-minimal`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10-minimal`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10-minimal`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`python3.10-minimal`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10-minimal`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`tar`	CVE-2023-39804	MEDIUM	1.34+dfsg-1ubuntu0.1.22.04.1	1.34+dfsg-1ubuntu0.1.22.04.2
`util-linux`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3

No Misconfigurations found

`Node.js`

1 known vulnerabilities found (HIGH: 1 MEDIUM: 0 LOW: 0 CRITICAL: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`cross-spawn`	CVE-2024-21538	HIGH	7.0.3	7.0.5, 6.0.6

No Misconfigurations found

`Python`

No Vulnerabilities found

No Misconfigurations found

`root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version`

24 known vulnerabilities found (HIGH: 6 MEDIUM: 17 LOW: 0 CRITICAL: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.21.0	1.33.0
`k8s.io/apimachinery`	GHSA-74fp-r6jw-h4mp	HIGH	v0.0.0-20180103014849-68f9c3a1feb3	0.0.0-20190927203648-9ce6eca90e73
`k8s.io/apimachinery`	CVE-2020-8559	MEDIUM	v0.0.0-20180103014849-68f9c3a1feb3	0.16.13, 0.17.9, 0.18.7
`stdlib`	CVE-2024-24790	CRITICAL	1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2023-29403	HIGH	1.20.4	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	1.20.4	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	1.20.4	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	1.20.4	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2023-29406	MEDIUM	1.20.4	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	1.20.4	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	1.20.4	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.20.4	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.20.4	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.20.4	1.22.7, 1.23.1

No Misconfigurations found

`root/.local/share/helm/plugins/helm-push/bin/helm-cm-push`

40 known vulnerabilities found (CRITICAL: 2 HIGH: 9 MEDIUM: 29 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/containerd/containerd`	CVE-2023-25153	MEDIUM	v1.6.15	1.5.18, 1.6.18
`github.com/containerd/containerd`	CVE-2023-25173	MEDIUM	v1.6.15	1.5.18, 1.6.18
`github.com/containerd/containerd`	GHSA-7ww5-4wqc-m92c	MEDIUM	v1.6.15	1.6.26, 1.7.11
`github.com/cyphar/filepath-securejoin`	GHSA-6xv5-86q9-7xr8	MEDIUM	v0.2.3	0.2.4
`github.com/docker/distribution`	CVE-2023-2253	HIGH	v2.8.1+incompatible	2.8.2-beta.1
`github.com/docker/docker`	CVE-2024-41110	CRITICAL	v20.10.24+incompatible	23.0.15, 26.1.5, 27.1.1, 25.0.6
`github.com/docker/docker`	CVE-2024-24557	MEDIUM	v20.10.24+incompatible	24.0.9, 25.0.2
`github.com/docker/docker`	CVE-2024-29018	MEDIUM	v20.10.24+incompatible	26.0.0-rc3, 25.0.5, 23.0.11
`github.com/docker/docker`	GHSA-jq35-85cj-fj4p	MEDIUM	v20.10.24+incompatible	24.0.7, 23.0.8, 20.10.27
`golang.org/x/crypto`	CVE-2023-48795	MEDIUM	v0.5.0	0.17.0
`golang.org/x/net`	CVE-2023-39325	HIGH	v0.9.0	0.17.0
`golang.org/x/net`	CVE-2023-3978	MEDIUM	v0.9.0	0.13.0
`golang.org/x/net`	CVE-2023-44487	MEDIUM	v0.9.0	0.17.0
`golang.org/x/net`	CVE-2023-45288	MEDIUM	v0.9.0	0.23.0
`google.golang.org/grpc`	GHSA-m425-mq94-257g	HIGH	v1.49.0	1.56.3, 1.57.1, 1.58.3
`google.golang.org/grpc`	CVE-2023-44487	MEDIUM	v1.49.0	1.58.3, 1.57.1, 1.56.3
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.28.1	1.33.0
`helm.sh/helm/v3`	CVE-2024-26147	HIGH	v3.11.2	3.14.2
`helm.sh/helm/v3`	CVE-2024-25620	MEDIUM	v3.11.2	3.14.1
`stdlib`	CVE-2024-24790	CRITICAL	1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2023-29403	HIGH	1.20.4	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	1.20.4	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	1.20.4	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	1.20.4	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2023-29406	MEDIUM	1.20.4	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	1.20.4	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	1.20.4	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.20.4	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.20.4	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.20.4	1.22.7, 1.23.1

No Misconfigurations found

`root/.local/share/helm/plugins/helm-schema-gen/bin/helm-schema-gen`

30 known vulnerabilities found (CRITICAL: 3 HIGH: 11 MEDIUM: 16 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`gopkg.in/yaml.v2`	CVE-2019-11254	MEDIUM	v2.2.7	2.2.8
`stdlib`	CVE-2023-24538	CRITICAL	1.19.7	1.19.8, 1.20.3
`stdlib`	CVE-2023-24540	CRITICAL	1.19.7	1.19.9, 1.20.4
`stdlib`	CVE-2024-24790	CRITICAL	1.19.7	1.21.11, 1.22.4
`stdlib`	CVE-2023-24534	HIGH	1.19.7	1.19.8, 1.20.3
`stdlib`	CVE-2023-24536	HIGH	1.19.7	1.19.8, 1.20.3
`stdlib`	CVE-2023-24537	HIGH	1.19.7	1.19.8, 1.20.3
`stdlib`	CVE-2023-24539	HIGH	1.19.7	1.19.9, 1.20.4
`stdlib`	CVE-2023-29400	HIGH	1.19.7	1.19.9, 1.20.4
`stdlib`	CVE-2023-29403	HIGH	1.19.7	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	1.19.7	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	1.19.7	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45287	HIGH	1.19.7	1.20.0
`stdlib`	CVE-2023-45288	HIGH	1.19.7	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.19.7	1.22.7, 1.23.1
`stdlib`	CVE-2023-29406	MEDIUM	1.19.7	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	1.19.7	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	1.19.7	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	1.19.7	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	1.19.7	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.19.7	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.19.7	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.19.7	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.19.7	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.19.7	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.19.7	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.19.7	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.19.7	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.19.7	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.19.7	1.22.7, 1.23.1

No Misconfigurations found

`root/gcrane`

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.21.12	1.22.7, 1.23.1

No Misconfigurations found

`root/krane`

4 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1
`stdlib`	CVE-2024-34156	HIGH	1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.21.12	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/ah`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1

No Misconfigurations found

`usr/local/bin/chart-doc-gen`

17 known vulnerabilities found (CRITICAL: 1 HIGH: 4 MEDIUM: 12 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.30.0	1.33.0
`stdlib`	CVE-2024-24790	CRITICAL	1.21.2	1.21.11, 1.22.4
`stdlib`	CVE-2023-39325	HIGH	1.21.2	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	1.21.2	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	1.21.2	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.21.2	1.22.7, 1.23.1
`stdlib`	CVE-2023-39326	MEDIUM	1.21.2	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.21.2	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.21.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.21.2	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.21.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.21.2	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/conftest`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/container-structure-test`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/cosign`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1

No Misconfigurations found

`usr/local/bin/crane`

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.21.12	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/ct`

8 known vulnerabilities found (CRITICAL: 1 HIGH: 2 MEDIUM: 5 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/hashicorp/go-retryablehttp`	CVE-2024-6104	MEDIUM	v0.7.5	0.7.7
`stdlib`	CVE-2024-24790	CRITICAL	1.22.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24788	HIGH	1.22.2	1.22.3
`stdlib`	CVE-2024-34156	HIGH	1.22.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-24789	MEDIUM	1.22.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.22.2	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.22.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.22.2	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/gomplate`

3 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 1 MEDIUM: 2)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	1.22.5	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	1.22.5	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.22.5	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/helm`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/helm-docs`

8 known vulnerabilities found (CRITICAL: 1 HIGH: 3 MEDIUM: 4 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-24790	CRITICAL	1.22.1	1.21.11, 1.22.4
`stdlib`	CVE-2023-45288	HIGH	1.22.1	1.21.9, 1.22.2
`stdlib`	CVE-2024-24788	HIGH	1.22.1	1.22.3
`stdlib`	CVE-2024-34156	HIGH	1.22.1	1.22.7, 1.23.1
`stdlib`	CVE-2024-24789	MEDIUM	1.22.1	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.22.1	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.22.1	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.22.1	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kube-linter`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kube-score`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kubeconform`

3 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 1 MEDIUM: 2)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	1.22.5	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	1.22.5	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.22.5	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kubectl`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kubent`

6 known vulnerabilities found (MEDIUM: 4 LOW: 0 CRITICAL: 0 HIGH: 2)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/open-policy-agent/opa`	CVE-2024-8260	MEDIUM	v0.67.1	0.68.0
`helm.sh/helm/v3`	CVE-2024-26147	HIGH	v3.13.3	3.14.2
`helm.sh/helm/v3`	CVE-2024-25620	MEDIUM	v3.13.3	3.14.1
`stdlib`	CVE-2024-34156	HIGH	1.23.0	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	1.23.0	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.23.0	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kubepug`

17 known vulnerabilities found (CRITICAL: 1 HIGH: 3 MEDIUM: 13 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2023-45288	MEDIUM	v0.17.0	0.23.0
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.30.0	1.33.0
`stdlib`	CVE-2024-24790	CRITICAL	1.21.3	1.21.11, 1.22.4
`stdlib`	CVE-2023-45283	HIGH	1.21.3	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	1.21.3	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.21.3	1.22.7, 1.23.1
`stdlib`	CVE-2023-39326	MEDIUM	1.21.3	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.21.3	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.21.3	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.21.3	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.21.3	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.21.3	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kubescape`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kubesec`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kubeval`

77 known vulnerabilities found (CRITICAL: 4 HIGH: 44 MEDIUM: 28 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/sys`	CVE-2022-29526	MEDIUM	v0.0.0-20200223170610-d5e6a3e2c0ae	0.0.0-20220412211240-33da011f77ad
`golang.org/x/text`	CVE-2021-38561	HIGH	v0.3.2	0.3.7
`golang.org/x/text`	CVE-2022-32149	HIGH	v0.3.2	0.3.8
`golang.org/x/text`	CVE-2020-14040	MEDIUM	v0.3.2	0.3.3
`stdlib`	CVE-2022-23806	CRITICAL	1.16.2	1.16.14, 1.17.7
`stdlib`	CVE-2023-24538	CRITICAL	1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24540	CRITICAL	1.16.2	1.19.9, 1.20.4
`stdlib`	CVE-2024-24790	CRITICAL	1.16.2	1.21.11, 1.22.4
`stdlib`	CVE-2021-33195	HIGH	1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-33196	HIGH	1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-33198	HIGH	1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-39293	HIGH	1.16.2	1.16.8, 1.17.1
`stdlib`	CVE-2021-41771	HIGH	1.16.2	1.16.10, 1.17.3
`stdlib`	CVE-2021-41772	HIGH	1.16.2	1.16.10, 1.17.3
`stdlib`	CVE-2021-44716	HIGH	1.16.2	1.16.12, 1.17.5
`stdlib`	CVE-2022-23772	HIGH	1.16.2	1.16.14, 1.17.7
`stdlib`	CVE-2022-24675	HIGH	1.16.2	1.17.9, 1.18.1
`stdlib`	CVE-2022-24921	HIGH	1.16.2	1.16.15, 1.17.8
`stdlib`	CVE-2022-27664	HIGH	1.16.2	1.18.6, 1.19.1
`stdlib`	CVE-2022-28131	HIGH	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-28327	HIGH	1.16.2	1.17.9, 1.18.1
`stdlib`	CVE-2022-2879	HIGH	1.16.2	1.18.7, 1.19.2
`stdlib`	CVE-2022-2880	HIGH	1.16.2	1.18.7, 1.19.2
`stdlib`	CVE-2022-29804	HIGH	1.16.2	1.17.11, 1.18.3
`stdlib`	CVE-2022-30580	HIGH	1.16.2	1.17.11, 1.18.3
`stdlib`	CVE-2022-30630	HIGH	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30631	HIGH	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30632	HIGH	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30633	HIGH	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30634	HIGH	1.16.2	1.17.11, 1.18.3
`stdlib`	CVE-2022-30635	HIGH	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-32189	HIGH	1.16.2	1.17.13, 1.18.5
`stdlib`	CVE-2022-41715	HIGH	1.16.2	1.18.7, 1.19.2
`stdlib`	CVE-2022-41716	HIGH	1.16.2	1.18.8, 1.19.3
`stdlib`	CVE-2022-41720	HIGH	1.16.2	1.18.9, 1.19.4
`stdlib`	CVE-2022-41722	HIGH	1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2022-41723	HIGH	1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2022-41724	HIGH	1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2022-41725	HIGH	1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2023-24534	HIGH	1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24536	HIGH	1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24537	HIGH	1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24539	HIGH	1.16.2	1.19.9, 1.20.4
`stdlib`	CVE-2023-29400	HIGH	1.16.2	1.19.9, 1.20.4
`stdlib`	CVE-2023-29403	HIGH	1.16.2	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	1.16.2	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	1.16.2	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45287	HIGH	1.16.2	1.20.0
`stdlib`	CVE-2023-45288	HIGH	1.16.2	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.16.2	1.22.7, 1.23.1
`stdlib`	CVE-2021-31525	MEDIUM	1.16.2	1.15.12, 1.16.4
`stdlib`	CVE-2021-33197	MEDIUM	1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-34558	MEDIUM	1.16.2	1.15.14, 1.16.6
`stdlib`	CVE-2021-36221	MEDIUM	1.16.2	1.15.15, 1.16.7
`stdlib`	CVE-2021-44717	MEDIUM	1.16.2	1.16.12, 1.17.5
`stdlib`	CVE-2022-1705	MEDIUM	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-1962	MEDIUM	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-29526	MEDIUM	1.16.2	1.17.10, 1.18.2
`stdlib`	CVE-2022-32148	MEDIUM	1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-41717	MEDIUM	1.16.2	1.18.9, 1.19.4
`stdlib`	CVE-2023-24532	MEDIUM	1.16.2	1.19.7, 1.20.2
`stdlib`	CVE-2023-29406	MEDIUM	1.16.2	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	1.16.2	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	1.16.2	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	1.16.2	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	1.16.2	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.16.2	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.16.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.16.2	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.16.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.16.2	1.22.7, 1.23.1
`stdlib`	CVE-2022-30629	LOW	1.16.2	1.17.11, 1.18.3

No Misconfigurations found

`usr/local/bin/kustomize`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kyverno`

2 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 1 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1
`github.com/open-policy-agent/opa`	CVE-2024-8260	MEDIUM	v0.67.1	0.68.0

No Misconfigurations found

`usr/local/bin/nova`

2 known vulnerabilities found (MEDIUM: 2 LOW: 0 CRITICAL: 0 HIGH: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2023-45288	MEDIUM	v0.17.0	0.23.0
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.31.0	1.33.0

No Misconfigurations found

`usr/local/bin/pluto`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/polaris`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/s5cmd`

16 known vulnerabilities found (CRITICAL: 1 HIGH: 4 MEDIUM: 11 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-24790	CRITICAL	1.20.8	1.21.11, 1.22.4
`stdlib`	CVE-2023-39325	HIGH	1.20.8	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	1.20.8	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	1.20.8	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	1.20.8	1.22.7, 1.23.1
`stdlib`	CVE-2023-39326	MEDIUM	1.20.8	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	1.20.8	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	1.20.8	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	1.20.8	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	1.20.8	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	1.20.8	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	1.20.8	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	1.20.8	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	1.20.8	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	1.20.8	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	1.20.8	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/trivy`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1

No Misconfigurations found

`usr/local/bin/yq`

No Vulnerabilities found

No Misconfigurations found

## [2.3.31](v2.3.30...v2.3.31) (2024-11-25) ### Miscellaneous Chores * **deps:** update all non-major dependencies ([#488](#488)) ([88f2b85](88f2b85)) * **deps:** update docker.io/bitnami/kubectl:1.31.2 docker digest to 0eab9ec ([#486](#486)) ([a76866f](a76866f)) * **deps:** update docker.io/nginxinc/nginx-unprivileged:1.27.2 docker digest to d2ce7dc ([#487](#487)) ([15df337](15df337)) * **deps:** update github-actions ([#489](#489)) ([759c5f2](759c5f2)) ### CI/CD * fix runs-on ([5c5898b](5c5898b)) * use releaser app instead of PAT ([b68ba32](b68ba32))

github-actions · 2024-11-25T11:52:26Z

🎉 This PR is included in version 2.3.31 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

renovate bot force-pushed the renovate/all-minor-patch branch 13 times, most recently from ff4f326 to 3d8a559 Compare November 23, 2024 05:23

chore(deps): update all non-major dependencies

24ca8bf

renovate bot force-pushed the renovate/all-minor-patch branch from 3d8a559 to 24ca8bf Compare November 23, 2024 23:14

chgl merged commit 88f2b85 into master Nov 24, 2024
11 of 12 checks passed

github-actions bot added the released label Nov 25, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update all non-major dependencies #488

chore(deps): update all non-major dependencies #488

renovate bot commented Nov 18, 2024 •

edited

Loading

github-actions bot commented Nov 18, 2024 •

edited

Loading

github-actions bot commented Nov 23, 2024

github-actions bot commented Nov 25, 2024

chore(deps): update all non-major dependencies #488

chore(deps): update all non-major dependencies #488

Conversation

renovate bot commented Nov 18, 2024 • edited Loading

Release Notes

Changelog

⚡Release highlights and summary⚡

Changelog

What's Changed

What's Changed

What's Changed

New Contributors

Bug Fix

Bug Fix

Feature

Bug Fix

Bug Fix

Feature

Bug Fix

Feature

Bug Fix

Feature

Bug Fix

Feature

Bug Fix

Bug Fix

Feature

Bug Fix

Bug Fix

Documentation

Bug Fix

Bug Fix

Features

Bug Fixes

Documentation

Dependencies

v3.16.3: Helm v3.16.3

Installation and Upgrading

What's Next

Changelog

✨ Added ✨

🐛 Fixed 🐛

Helm

🔧 Others 🔧

What's Changed

Other Changes

What's Changed

🚀 Features

🐛 Bug Fixes

🧰 Maintenance

Other Changes

Configuration

github-actions bot commented Nov 18, 2024 • edited Loading

🦙 MegaLinter status: ❌ ERROR

github-actions bot commented Nov 23, 2024

Trivy image scan report

ghcr.io/chgl/kube-powertools:pr-488 (ubuntu 22.04)

125 known vulnerabilities found (HIGH: 0 MEDIUM: 90 LOW: 35 CRITICAL: 0)

No Misconfigurations found

Node.js

1 known vulnerabilities found (HIGH: 1 MEDIUM: 0 LOW: 0 CRITICAL: 0)

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version

24 known vulnerabilities found (HIGH: 6 MEDIUM: 17 LOW: 0 CRITICAL: 1)

No Misconfigurations found

root/.local/share/helm/plugins/helm-push/bin/helm-cm-push

40 known vulnerabilities found (CRITICAL: 2 HIGH: 9 MEDIUM: 29 LOW: 0)

No Misconfigurations found

root/.local/share/helm/plugins/helm-schema-gen/bin/helm-schema-gen

30 known vulnerabilities found (CRITICAL: 3 HIGH: 11 MEDIUM: 16 LOW: 0)

No Misconfigurations found

root/gcrane

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

No Misconfigurations found

root/krane

4 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 1)

No Misconfigurations found

renovate bot commented Nov 18, 2024 •

edited

Loading

`v3.16.3`: Helm v3.16.3

github-actions bot commented Nov 18, 2024 •

edited

Loading

`ghcr.io/chgl/kube-powertools:pr-488 (ubuntu 22.04)`

`Node.js`

`Python`

`root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version`

`root/.local/share/helm/plugins/helm-push/bin/helm-cm-push`

`root/.local/share/helm/plugins/helm-schema-gen/bin/helm-schema-gen`

`root/gcrane`

`root/krane`

`usr/local/bin/ah`

`usr/local/bin/chart-doc-gen`

`usr/local/bin/conftest`

`usr/local/bin/container-structure-test`

`usr/local/bin/cosign`

`usr/local/bin/crane`

`usr/local/bin/ct`