chore(deps): update all non-major dependencies #501

renovate · 2024-12-23T01:40:07Z

This PR contains the following updates:

Package	Type	Update	Change
FairwindsOps/nova		minor	`3.10.2` -> `3.11.1`
FairwindsOps/pluto		minor	`5.20.3` -> `5.21.0`
aquasecurity/trivy		patch	`0.58.0` -> `0.58.1`
checkov		patch	`==3.2.335` -> `==3.2.344`
docker.io/bitnami/kubectl (source)	final	minor	`1.31.4` -> `1.32.0`
hairyhenderson/gomplate		minor	`4.2.0` -> `4.3.0`
helm/helm		patch	`3.16.3` -> `3.16.4`
peak/s5cmd		minor	`2.2.2` -> `2.3.0`

Release Notes

FairwindsOps/nova (FairwindsOps/nova)

`v3.11.1`

Compare Source

Changelog

0affeff update preferred repo list (#352)
3b702b5 upgrade modules and docker base image (#351)

FairwindsOps/pluto (FairwindsOps/pluto)

`v5.21.0`

Compare Source

Changelog

8f45ff5 feat: add flowcontrol v1beta2 removal in 1.32

You can verify the signatures of both the checksums.txt file and the published docker images using cosign.

cosign 1.x

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

cosign 2.x

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub --insecure-ignore-tlog

cosign verify us-docker.pkg.dev/fairwinds-ops/oss/pluto:v5 --key https://artifacts.fairwinds.com/cosign.pub

aquasecurity/trivy (aquasecurity/trivy)

bridgecrewio/checkov (checkov)

`v3.2.344`

Bug Fix

kubernetes: Add to nested resources on k8s graph inherit namespace - #6912

`v3.2.343`

`v3.2.342`

Compare Source

Feature

serverless: serverless definitions context - #6910
serverless: Serverless graph integration - #6911
terraform: Add a terraform block check - #6904

`v3.2.341`

Compare Source

`v3.2.340`

Compare Source

`v3.2.339`

Compare Source

Bug Fix

general: Fix jsonpath-key handling for special characters like "/" and reduce log size - #6907
serverless: Fix serverless check crash - #6909

`v3.2.337`

Compare Source

`v3.2.336`

Compare Source

Feature

general: add cortex:skip for suppressions - #6908

Bug Fix

terraform: fix CKV_AZURE_136 for replicas - #6895
terraform: Fix CKV_AZURE_227 for Azure V4 - #6906

hairyhenderson/gomplate (hairyhenderson/gomplate)

`v4.3.0`

Compare Source

Features

fs: Support Vault AWS IAM auth (#2264) (1da9105)

Bug Fixes

datasources: Fix aws+sm bug when reading secrets not starting with slash (#2284) (a69bb64)
datasources: Properly support aws+sm with args (#2291) (ddc4efb)
fs: Cache data in stdinfs (#2288) (cd74bb8)
fs: fix mergefs bug where files were opened too many times (#2287) (7eb7829)

Documentation

fix: Quotation in external templates example (#2263) (d512164)
fix: Typo of description in functions/test (#2265) (478b745)

Dependencies

actions: Bump docker/setup-buildx-action from 3.7.1 to 3.8.0 (#2286) (86b934e)
docker: Bump alpine from 3.20 to 3.21 (#2278) (9439cad)
go: Bump cuelang.org/go from 0.10.1 to 0.11.0 (#2267) (7b89601)
go: Bump github.com/hairyhenderson/go-fsimpl from 0.1.8 to 0.2.0 (#2271) (e29e3ee)
go: Bump github.com/hairyhenderson/go-fsimpl from 0.2.0 to 0.2.1 (#2290) (d7e8e19)
go: Bump github.com/itchyny/gojq from 0.12.16 to 0.12.17 (#2272) (fe927f9)
go: Bump github.com/lmittmann/tint from 1.0.5 to 1.0.6 (#2285) (e04f119)
go: Bump github.com/Masterminds/semver/v3 from 3.3.0 to 3.3.1 (#2268) (71a58a1)
go: Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#2270) (67cf0b2)
go: Bump golang.org/x/crypto from 0.29.0 to 0.30.0 (#2277) (e2cf0df)
go: Bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#2280) (f4d9693)
go: Bump golang.org/x/sys from 0.27.0 to 0.28.0 (#2274) (2e9d862)
go: Bump golang.org/x/term from 0.26.0 to 0.27.0 (#2275) (b53e9e4)
go: Bump k8s.io/client-go from 0.31.2 to 0.31.3 (#2269) (8d23672)
go: Bump k8s.io/client-go from 0.31.3 to 0.32.0 (#2282) (aaaf0da)

helm/helm (helm/helm)

`v3.16.4`: Helm v3.16.4

Compare Source

Helm v3.16.4 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.4. The common platform binaries are here:

MacOS amd64 (checksum / 8dc25671120a4af197afe7ad9041fb8e1dd71bc01e5ef73dba1139cbc9e9f44b)
MacOS arm64 (checksum / e2442d8f05d53d84c39b869bc5fe5affad247ee2f4c706a040919c146edb1f94)
Linux amd64 (checksum / fc307327959aa38ed8f9f7e66d45492bb022a66c3e5da6063958254b9767d179)
Linux arm (checksum / 432e774d1087d3773737888d384c62477b399227662b42cbf0c32e95e6e72556)
Linux arm64 (checksum / d3f8f15b3d9ec8c8678fbf3280c3e5902efabe5912e2f9fcf29107efbc8ead69)
Linux i386 (checksum / 6022b34e165a5196827043c77bcd1fa28ef48109b3a4af46e8660ddb0a6c44e0)
Linux ppc64le (checksum / 0ba4375a6dcf6117a8e7729fbed36d9220f8ad98dbc7aabc16186f22917caead)
Linux s390x (checksum / 10b88dc2afd97267feba8283d58dcb1c937defb7df8de152c86b60aaece47d59)
Linux riscv64 (checksum / e733c727de7644cfeb25b094e1f0a56c53a7cb437c93c992aa92e6c7b9f6af93)
Windows amd64 (checksum / 9bb114c12e530a7129fd3d78fc1784e813dd7a6e29e5f9b5af8bc83fd1066d36)
Windows arm64 (checksum / a4afeee93031920ec08b7e880c859a159bcd222837a81196cadaeb42408ad0b3)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

3.17.0 is the next feature release and will be on January 15, 2025

Changelog

Bump golang.org/x/crypto from 0.30.0 to 0.31.0 7877b45 (dependabot[bot])
Bump the k8s-io group with 7 updates 848e586 (dependabot[bot])

peak/s5cmd (peak/s5cmd)

`v2.3.0`

Compare Source

Breaking changes

Changed the exit code from 1 to 0 for ls when used with an empty bucket. Exits with 1 if the bucket is non-existent. (#722) @Z9n2JktHlZDmlhSvqc9X2MmL3BwQG7tk

Features

Added prefix and wildcard support to cat command. (#716) @occasionallydavid
Added head command. (#682) @yitzhaklevi
Added go 1.22 support. (#764) @lizzzcai
Added meta-directive flag to cp command. (#666 #711) @GordonGustafson @arosu

Improvements

Upgraded alpine base image to 3.18. (#661) @embik
Upgraded aws-sdk-go to v1.44.298. (#684) @matan129
Upgraded lanrat/extsort to v1.0.2 (#717) @gkowarzyk
Changed signaling channels by replacing chan bool with chan struct{} for efficiency. (#733)

Bugfixes

Fixed the cp command to work with the --content-type flag when performing a copy operation from S3 to S3. (#738)
Fixed a bug in sync command where objects in Glacier storage at the destination were being overwritten during synchronization (#712) @stevenmcastano
Fixed a bug in sync command where source objects with absolute paths failed to match destination paths, causing unnecessary copying during each sync operation.(#676) @bounlu

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2024-12-23T01:42:50Z

🦙 MegaLinter status: ❌ ERROR

Descriptor	Linter	Files	Errors	Elapsed time
✅ ACTION	actionlint	4	0	0.03s
✅ BASH	bash-exec	4	0	0.31s
✅ BASH	shellcheck	4	0	0.13s
✅ BASH	shfmt	4	0	0.0s
✅ DOCKERFILE	hadolint	1	0	1.25s
✅ EDITORCONFIG	editorconfig-checker	47	0	0.06s
✅ JSON	jsonlint	4	0	0.18s
✅ JSON	npm-package-json-lint	yes	no	0.63s
✅ JSON	prettier	4	0	0.57s
✅ JSON	v8r	4	0	14.44s
⚠️ MARKDOWN	markdownlint	5	9	0.82s
❌ REPOSITORY	checkov	yes	2	26.09s
✅ REPOSITORY	devskim	yes	no	1.35s
✅ REPOSITORY	gitleaks	yes	no	0.8s
✅ REPOSITORY	git_diff	yes	no	0.17s
❌ REPOSITORY	grype	yes	1	17.0s
✅ REPOSITORY	kics	yes	no	16.79s
✅ REPOSITORY	secretlint	yes	no	0.86s
✅ REPOSITORY	syft	yes	no	2.03s
❌ REPOSITORY	trivy	yes	1	9.75s
✅ REPOSITORY	trivy-sbom	yes	no	0.16s
✅ REPOSITORY	trufflehog	yes	no	2.53s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

oxsecurity/megalinter/flavors/[email protected] (83 linters)

MegaLinter is graciously provided by

github-actions · 2024-12-24T09:40:50Z

Trivy image scan report

`ghcr.io/chgl/kube-powertools:pr-501 (ubuntu 22.04)`

128 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 90 LOW: 38)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`bash`	CVE-2022-3715	MEDIUM	5.1-6ubuntu1	5.1-6ubuntu1.1
`bsdutils`	CVE-2024-28085	MEDIUM	1:2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`curl`	CVE-2024-7264	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.17
`curl`	CVE-2024-8096	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.18
`curl`	CVE-2024-11053	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.20
`curl`	CVE-2024-9681	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.19
`libblkid1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`libc-bin`	CVE-2023-5156	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc-bin`	CVE-2024-2961	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.7
`libc-bin`	CVE-2024-33599	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2024-33600	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2024-33601	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2024-33602	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc-bin`	CVE-2023-4806	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc-bin`	CVE-2023-4813	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc6`	CVE-2023-5156	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc6`	CVE-2024-2961	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.7
`libc6`	CVE-2024-33599	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2024-33600	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2024-33601	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2024-33602	MEDIUM	2.35-0ubuntu3.4	2.35-0ubuntu3.8
`libc6`	CVE-2023-4806	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libc6`	CVE-2023-4813	LOW	2.35-0ubuntu3.4	2.35-0ubuntu3.5
`libcurl3-gnutls`	CVE-2024-7264	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.17
`libcurl3-gnutls`	CVE-2024-8096	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.18
`libcurl3-gnutls`	CVE-2024-11053	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.20
`libcurl3-gnutls`	CVE-2024-9681	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.19
`libcurl4`	CVE-2024-7264	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.17
`libcurl4`	CVE-2024-8096	MEDIUM	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.18
`libcurl4`	CVE-2024-11053	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.20
`libcurl4`	CVE-2024-9681	LOW	7.81.0-1ubuntu1.16	7.81.0-1ubuntu1.19
`libexpat1`	CVE-2024-45490	MEDIUM	2.4.7-1ubuntu0.3	2.4.7-1ubuntu0.4
`libexpat1`	CVE-2024-45491	MEDIUM	2.4.7-1ubuntu0.3	2.4.7-1ubuntu0.4
`libexpat1`	CVE-2024-45492	MEDIUM	2.4.7-1ubuntu0.3	2.4.7-1ubuntu0.4
`libgnutls30`	CVE-2023-5981	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.3
`libgnutls30`	CVE-2024-0553	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.4
`libgnutls30`	CVE-2024-0567	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.4
`libgnutls30`	CVE-2024-28834	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.5
`libgnutls30`	CVE-2024-28835	MEDIUM	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.5
`libgssapi-krb5-2`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libgssapi-krb5-2`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libgssapi-krb5-2`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libk5crypto3`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libk5crypto3`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libk5crypto3`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5-3`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libkrb5-3`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5-3`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5support0`	CVE-2023-36054	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.3
`libkrb5support0`	CVE-2024-37370	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libkrb5support0`	CVE-2024-37371	MEDIUM	1.19.2-2ubuntu0.2	1.19.2-2ubuntu0.4
`libmount1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`libpam-modules`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libpam-modules-bin`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libpam-runtime`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libpam0g`	CVE-2024-22365	MEDIUM	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4
`libprocps8`	CVE-2023-4016	LOW	2:3.3.17-6ubuntu2	2:3.3.17-6ubuntu2.1
`libpython3.10-minimal`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-minimal`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-minimal`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-minimal`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-minimal`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`libpython3.10-minimal`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-minimal`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-stdlib`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-stdlib`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`libpython3.10-stdlib`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libpython3.10-stdlib`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`libpython3.10-stdlib`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`libpython3.10-stdlib`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`libsmartcols1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`libssl3`	CVE-2022-40735	MEDIUM	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.16
`libssl3`	CVE-2023-5363	MEDIUM	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2024-6119	MEDIUM	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.18
`libssl3`	CVE-2023-2975	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2023-3446	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2023-3817	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.12
`libssl3`	CVE-2023-5678	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2023-6129	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2023-6237	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2024-0727	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.14
`libssl3`	CVE-2024-2511	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libssl3`	CVE-2024-4603	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libssl3`	CVE-2024-4741	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libssl3`	CVE-2024-5535	LOW	3.0.2-0ubuntu1.10	3.0.2-0ubuntu1.17
`libuuid1`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`login`	CVE-2023-4641	LOW	1:4.8.1-2ubuntu2.1	1:4.8.1-2ubuntu2.2
`mount`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3
`openssl`	CVE-2022-40735	MEDIUM	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.16
`openssl`	CVE-2024-6119	MEDIUM	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.18
`openssl`	CVE-2024-2511	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`openssl`	CVE-2024-4603	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`openssl`	CVE-2024-4741	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`openssl`	CVE-2024-5535	LOW	3.0.2-0ubuntu1.15	3.0.2-0ubuntu1.17
`passwd`	CVE-2023-4641	LOW	1:4.8.1-2ubuntu2.1	1:4.8.1-2ubuntu2.2
`procps`	CVE-2023-4016	LOW	2:3.3.17-6ubuntu2	2:3.3.17-6ubuntu2.1
`python3-pip`	CVE-2024-37891	LOW	22.0.2+dfsg-1ubuntu0.4	22.0.2+dfsg-1ubuntu0.5
`python3-pkg-resources`	CVE-2024-6345	MEDIUM	59.6.0-1.2ubuntu0.22.04.1	59.6.0-1.2ubuntu0.22.04.2
`python3-setuptools`	CVE-2024-6345	MEDIUM	59.6.0-1.2ubuntu0.22.04.1	59.6.0-1.2ubuntu0.22.04.2
`python3.10`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`python3.10`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2023-27043	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2023-6597	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10-minimal`	CVE-2024-0397	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10-minimal`	CVE-2024-0450	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.4
`python3.10-minimal`	CVE-2024-6232	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2024-6923	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2024-8088	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`python3.10-minimal`	CVE-2024-9287	MEDIUM	3.10.12-1~22.04.3	3.10.12-1~22.04.7
`python3.10-minimal`	CVE-2024-4032	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.5
`python3.10-minimal`	CVE-2024-7592	LOW	3.10.12-1~22.04.3	3.10.12-1~22.04.6
`tar`	CVE-2023-39804	MEDIUM	1.34+dfsg-1ubuntu0.1.22.04.1	1.34+dfsg-1ubuntu0.1.22.04.2
`util-linux`	CVE-2024-28085	MEDIUM	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3

No Misconfigurations found

`Node.js`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`cross-spawn`	CVE-2024-21538	HIGH	7.0.3	7.0.5, 6.0.6

No Misconfigurations found

`Python`

No Vulnerabilities found

No Misconfigurations found

`root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version`

24 known vulnerabilities found (CRITICAL: 1 HIGH: 6 MEDIUM: 17 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.21.0	1.33.0
`k8s.io/apimachinery`	GHSA-74fp-r6jw-h4mp	HIGH	v0.0.0-20180103014849-68f9c3a1feb3	0.0.0-20190927203648-9ce6eca90e73
`k8s.io/apimachinery`	CVE-2020-8559	MEDIUM	v0.0.0-20180103014849-68f9c3a1feb3	0.16.13, 0.17.9, 0.18.7
`stdlib`	CVE-2024-24790	CRITICAL	v1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2023-29403	HIGH	v1.20.4	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	v1.20.4	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	v1.20.4	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	v1.20.4	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	v1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2023-29406	MEDIUM	v1.20.4	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	v1.20.4	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	v1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	v1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	v1.20.4	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	v1.20.4	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.20.4	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.20.4	1.22.7, 1.23.1

No Misconfigurations found

`root/.local/share/helm/plugins/helm-push/bin/helm-cm-push`

42 known vulnerabilities found (MEDIUM: 29 LOW: 0 CRITICAL: 3 HIGH: 10)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/containerd/containerd`	CVE-2023-25153	MEDIUM	v1.6.15	1.5.18, 1.6.18
`github.com/containerd/containerd`	CVE-2023-25173	MEDIUM	v1.6.15	1.5.18, 1.6.18
`github.com/containerd/containerd`	GHSA-7ww5-4wqc-m92c	MEDIUM	v1.6.15	1.6.26, 1.7.11
`github.com/cyphar/filepath-securejoin`	GHSA-6xv5-86q9-7xr8	MEDIUM	v0.2.3	0.2.4
`github.com/docker/distribution`	CVE-2023-2253	HIGH	v2.8.1+incompatible	2.8.2-beta.1
`github.com/docker/docker`	CVE-2024-41110	CRITICAL	v20.10.24+incompatible	23.0.15, 26.1.5, 27.1.1, 25.0.6
`github.com/docker/docker`	CVE-2024-24557	MEDIUM	v20.10.24+incompatible	24.0.9, 25.0.2
`github.com/docker/docker`	CVE-2024-29018	MEDIUM	v20.10.24+incompatible	26.0.0-rc3, 25.0.5, 23.0.11
`github.com/docker/docker`	GHSA-jq35-85cj-fj4p	MEDIUM	v20.10.24+incompatible	24.0.7, 23.0.8, 20.10.27
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.5.0	0.31.0
`golang.org/x/crypto`	CVE-2023-48795	MEDIUM	v0.5.0	0.17.0
`golang.org/x/net`	CVE-2023-39325	HIGH	v0.9.0	0.17.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.9.0	0.33.0
`golang.org/x/net`	CVE-2023-3978	MEDIUM	v0.9.0	0.13.0
`golang.org/x/net`	CVE-2023-44487	MEDIUM	v0.9.0	0.17.0
`golang.org/x/net`	CVE-2023-45288	MEDIUM	v0.9.0	0.23.0
`google.golang.org/grpc`	GHSA-m425-mq94-257g	HIGH	v1.49.0	1.56.3, 1.57.1, 1.58.3
`google.golang.org/grpc`	CVE-2023-44487	MEDIUM	v1.49.0	1.58.3, 1.57.1, 1.56.3
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.28.1	1.33.0
`helm.sh/helm/v3`	CVE-2024-26147	HIGH	v3.11.2	3.14.2
`helm.sh/helm/v3`	CVE-2024-25620	MEDIUM	v3.11.2	3.14.1
`stdlib`	CVE-2024-24790	CRITICAL	v1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2023-29403	HIGH	v1.20.4	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	v1.20.4	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	v1.20.4	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	v1.20.4	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	v1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2023-29406	MEDIUM	v1.20.4	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	v1.20.4	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	v1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	v1.20.4	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	v1.20.4	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	v1.20.4	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	v1.20.4	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.20.4	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.20.4	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.20.4	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.20.4	1.22.7, 1.23.1

No Misconfigurations found

`root/.local/share/helm/plugins/helm-schema/bin/helm-schema`

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.21.0	0.31.0

No Misconfigurations found

`root/gcrane`

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	v1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	v1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.21.12	1.22.7, 1.23.1

No Misconfigurations found

`root/krane`

5 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 2 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.17.0	0.31.0
`stdlib`	CVE-2024-34156	HIGH	v1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	v1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.21.12	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/ah`

3 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.28.0	0.31.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.29.0	0.33.0

No Misconfigurations found

`usr/local/bin/chart-doc-gen`

17 known vulnerabilities found (MEDIUM: 12 LOW: 0 CRITICAL: 1 HIGH: 4)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.30.0	1.33.0
`stdlib`	CVE-2024-24790	CRITICAL	v1.21.2	1.21.11, 1.22.4
`stdlib`	CVE-2023-39325	HIGH	v1.21.2	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	v1.21.2	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	v1.21.2	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	v1.21.2	1.22.7, 1.23.1
`stdlib`	CVE-2023-39326	MEDIUM	v1.21.2	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	v1.21.2	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	v1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	v1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	v1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	v1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	v1.21.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.21.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.21.2	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.21.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.21.2	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/conftest`

2 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.27.0	0.31.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.29.0	0.33.0

No Misconfigurations found

`usr/local/bin/container-structure-test`

1 known vulnerabilities found (HIGH: 0 MEDIUM: 0 LOW: 0 CRITICAL: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.25.0	0.31.0

No Misconfigurations found

`usr/local/bin/cosign`

3 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.27.0	0.31.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.28.0	0.33.0

No Misconfigurations found

`usr/local/bin/crane`

3 known vulnerabilities found (HIGH: 1 MEDIUM: 2 LOW: 0 CRITICAL: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	v1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	v1.21.12	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.21.12	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/ct`

8 known vulnerabilities found (CRITICAL: 1 HIGH: 2 MEDIUM: 5 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/hashicorp/go-retryablehttp`	CVE-2024-6104	MEDIUM	v0.7.5	0.7.7
`stdlib`	CVE-2024-24790	CRITICAL	v1.22.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24788	HIGH	v1.22.2	1.22.3
`stdlib`	CVE-2024-34156	HIGH	v1.22.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.22.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.22.2	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.22.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.22.2	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/gomplate`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.32.0	0.33.0

No Misconfigurations found

`usr/local/bin/helm`

1 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 1 MEDIUM: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.26.0	0.33.0

No Misconfigurations found

`usr/local/bin/helm-docs`

9 known vulnerabilities found (CRITICAL: 2 HIGH: 3 MEDIUM: 4 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.21.0	0.31.0
`stdlib`	CVE-2024-24790	CRITICAL	v1.22.1	1.21.11, 1.22.4
`stdlib`	CVE-2023-45288	HIGH	v1.22.1	1.21.9, 1.22.2
`stdlib`	CVE-2024-24788	HIGH	v1.22.1	1.22.3
`stdlib`	CVE-2024-34156	HIGH	v1.22.1	1.22.7, 1.23.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.22.1	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.22.1	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.22.1	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.22.1	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kube-linter`

2 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.27.0	0.31.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.29.0	0.33.0

No Misconfigurations found

`usr/local/bin/kube-score`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.26.0	0.33.0

No Misconfigurations found

`usr/local/bin/kubeconform`

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`stdlib`	CVE-2024-34156	HIGH	v1.22.5	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	v1.22.5	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.22.5	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kubectl`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.30.0	0.33.0

No Misconfigurations found

`usr/local/bin/kubent`

7 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 3 MEDIUM: 4)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/open-policy-agent/opa`	CVE-2024-8260	MEDIUM	v0.67.1	0.68.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.27.0	0.33.0
`helm.sh/helm/v3`	CVE-2024-26147	HIGH	v3.13.3	3.14.2
`helm.sh/helm/v3`	CVE-2024-25620	MEDIUM	v3.13.3	3.14.1
`stdlib`	CVE-2024-34156	HIGH	v1.23.0	1.22.7, 1.23.1
`stdlib`	CVE-2024-34155	MEDIUM	v1.23.0	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.23.0	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kubepug`

18 known vulnerabilities found (CRITICAL: 1 HIGH: 4 MEDIUM: 13 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.17.0	0.33.0
`golang.org/x/net`	CVE-2023-45288	MEDIUM	v0.17.0	0.23.0
`google.golang.org/protobuf`	CVE-2024-24786	MEDIUM	v1.30.0	1.33.0
`stdlib`	CVE-2024-24790	CRITICAL	v1.21.3	1.21.11, 1.22.4
`stdlib`	CVE-2023-45283	HIGH	v1.21.3	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45288	HIGH	v1.21.3	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	v1.21.3	1.22.7, 1.23.1
`stdlib`	CVE-2023-39326	MEDIUM	v1.21.3	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	v1.21.3	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	v1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	v1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	v1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	v1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	v1.21.3	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.21.3	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.21.3	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.21.3	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.21.3	1.22.7, 1.23.1

No Misconfigurations found

`usr/local/bin/kubescape`

2 known vulnerabilities found (MEDIUM: 0 LOW: 0 CRITICAL: 1 HIGH: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.27.0	0.31.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.29.0	0.33.0

No Misconfigurations found

`usr/local/bin/kubesec`

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.29.0	0.31.0

No Misconfigurations found

`usr/local/bin/kubeval`

77 known vulnerabilities found (LOW: 1 CRITICAL: 4 HIGH: 44 MEDIUM: 28)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/sys`	CVE-2022-29526	MEDIUM	v0.0.0-20200223170610-d5e6a3e2c0ae	0.0.0-20220412211240-33da011f77ad
`golang.org/x/text`	CVE-2021-38561	HIGH	v0.3.2	0.3.7
`golang.org/x/text`	CVE-2022-32149	HIGH	v0.3.2	0.3.8
`golang.org/x/text`	CVE-2020-14040	MEDIUM	v0.3.2	0.3.3
`stdlib`	CVE-2022-23806	CRITICAL	v1.16.2	1.16.14, 1.17.7
`stdlib`	CVE-2023-24538	CRITICAL	v1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24540	CRITICAL	v1.16.2	1.19.9, 1.20.4
`stdlib`	CVE-2024-24790	CRITICAL	v1.16.2	1.21.11, 1.22.4
`stdlib`	CVE-2021-33195	HIGH	v1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-33196	HIGH	v1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-33198	HIGH	v1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-39293	HIGH	v1.16.2	1.16.8, 1.17.1
`stdlib`	CVE-2021-41771	HIGH	v1.16.2	1.16.10, 1.17.3
`stdlib`	CVE-2021-41772	HIGH	v1.16.2	1.16.10, 1.17.3
`stdlib`	CVE-2021-44716	HIGH	v1.16.2	1.16.12, 1.17.5
`stdlib`	CVE-2022-23772	HIGH	v1.16.2	1.16.14, 1.17.7
`stdlib`	CVE-2022-24675	HIGH	v1.16.2	1.17.9, 1.18.1
`stdlib`	CVE-2022-24921	HIGH	v1.16.2	1.16.15, 1.17.8
`stdlib`	CVE-2022-27664	HIGH	v1.16.2	1.18.6, 1.19.1
`stdlib`	CVE-2022-28131	HIGH	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-28327	HIGH	v1.16.2	1.17.9, 1.18.1
`stdlib`	CVE-2022-2879	HIGH	v1.16.2	1.18.7, 1.19.2
`stdlib`	CVE-2022-2880	HIGH	v1.16.2	1.18.7, 1.19.2
`stdlib`	CVE-2022-29804	HIGH	v1.16.2	1.17.11, 1.18.3
`stdlib`	CVE-2022-30580	HIGH	v1.16.2	1.17.11, 1.18.3
`stdlib`	CVE-2022-30630	HIGH	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30631	HIGH	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30632	HIGH	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30633	HIGH	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-30634	HIGH	v1.16.2	1.17.11, 1.18.3
`stdlib`	CVE-2022-30635	HIGH	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-32189	HIGH	v1.16.2	1.17.13, 1.18.5
`stdlib`	CVE-2022-41715	HIGH	v1.16.2	1.18.7, 1.19.2
`stdlib`	CVE-2022-41716	HIGH	v1.16.2	1.18.8, 1.19.3
`stdlib`	CVE-2022-41720	HIGH	v1.16.2	1.18.9, 1.19.4
`stdlib`	CVE-2022-41722	HIGH	v1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2022-41723	HIGH	v1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2022-41724	HIGH	v1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2022-41725	HIGH	v1.16.2	1.19.6, 1.20.1
`stdlib`	CVE-2023-24534	HIGH	v1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24536	HIGH	v1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24537	HIGH	v1.16.2	1.19.8, 1.20.3
`stdlib`	CVE-2023-24539	HIGH	v1.16.2	1.19.9, 1.20.4
`stdlib`	CVE-2023-29400	HIGH	v1.16.2	1.19.9, 1.20.4
`stdlib`	CVE-2023-29403	HIGH	v1.16.2	1.19.10, 1.20.5
`stdlib`	CVE-2023-39325	HIGH	v1.16.2	1.20.10, 1.21.3
`stdlib`	CVE-2023-45283	HIGH	v1.16.2	1.20.11, 1.21.4, 1.20.12, 1.21.5
`stdlib`	CVE-2023-45287	HIGH	v1.16.2	1.20.0
`stdlib`	CVE-2023-45288	HIGH	v1.16.2	1.21.9, 1.22.2
`stdlib`	CVE-2024-34156	HIGH	v1.16.2	1.22.7, 1.23.1
`stdlib`	CVE-2021-31525	MEDIUM	v1.16.2	1.15.12, 1.16.4
`stdlib`	CVE-2021-33197	MEDIUM	v1.16.2	1.15.13, 1.16.5
`stdlib`	CVE-2021-34558	MEDIUM	v1.16.2	1.15.14, 1.16.6
`stdlib`	CVE-2021-36221	MEDIUM	v1.16.2	1.15.15, 1.16.7
`stdlib`	CVE-2021-44717	MEDIUM	v1.16.2	1.16.12, 1.17.5
`stdlib`	CVE-2022-1705	MEDIUM	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-1962	MEDIUM	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-29526	MEDIUM	v1.16.2	1.17.10, 1.18.2
`stdlib`	CVE-2022-32148	MEDIUM	v1.16.2	1.17.12, 1.18.4
`stdlib`	CVE-2022-41717	MEDIUM	v1.16.2	1.18.9, 1.19.4
`stdlib`	CVE-2023-24532	MEDIUM	v1.16.2	1.19.7, 1.20.2
`stdlib`	CVE-2023-29406	MEDIUM	v1.16.2	1.19.11, 1.20.6
`stdlib`	CVE-2023-29409	MEDIUM	v1.16.2	1.19.12, 1.20.7, 1.21.0-rc.4
`stdlib`	CVE-2023-39318	MEDIUM	v1.16.2	1.20.8, 1.21.1
`stdlib`	CVE-2023-39319	MEDIUM	v1.16.2	1.20.8, 1.21.1
`stdlib`	CVE-2023-39326	MEDIUM	v1.16.2	1.20.12, 1.21.5
`stdlib`	CVE-2023-45284	MEDIUM	v1.16.2	1.20.11, 1.21.4
`stdlib`	CVE-2023-45289	MEDIUM	v1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2023-45290	MEDIUM	v1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24783	MEDIUM	v1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24784	MEDIUM	v1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24785	MEDIUM	v1.16.2	1.21.8, 1.22.1
`stdlib`	CVE-2024-24789	MEDIUM	v1.16.2	1.21.11, 1.22.4
`stdlib`	CVE-2024-24791	MEDIUM	v1.16.2	1.21.12, 1.22.5
`stdlib`	CVE-2024-34155	MEDIUM	v1.16.2	1.22.7, 1.23.1
`stdlib`	CVE-2024-34158	MEDIUM	v1.16.2	1.22.7, 1.23.1
`stdlib`	CVE-2022-30629	LOW	v1.16.2	1.17.11, 1.18.3

No Misconfigurations found

`usr/local/bin/kustomize`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/kyverno`

4 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 1 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`github.com/golang-jwt/jwt/v4`	CVE-2024-51744	LOW	v4.5.0	4.5.1
`github.com/open-policy-agent/opa`	CVE-2024-8260	MEDIUM	v0.67.1	0.68.0
`golang.org/x/crypto`	CVE-2024-45337	CRITICAL	v0.28.0	0.31.0
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.29.0	0.33.0

No Misconfigurations found

`usr/local/bin/nova`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/pluto`

1 known vulnerabilities found (HIGH: 1 MEDIUM: 0 LOW: 0 CRITICAL: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.28.0	0.33.0

No Misconfigurations found

`usr/local/bin/polaris`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.26.0	0.33.0

No Misconfigurations found

`usr/local/bin/s5cmd`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/trivy`

No Vulnerabilities found

No Misconfigurations found

`usr/local/bin/yq`

1 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 1 MEDIUM: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`golang.org/x/net`	CVE-2024-45338	HIGH	v0.32.0	0.33.0

No Misconfigurations found

renovate bot force-pushed the renovate/all-minor-patch branch from 8456b94 to 2104a50 Compare December 23, 2024 20:25

chore(deps): update all non-major dependencies

ad926d3

renovate bot force-pushed the renovate/all-minor-patch branch from 2104a50 to ad926d3 Compare December 24, 2024 09:38

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update all non-major dependencies #501

chore(deps): update all non-major dependencies #501

renovate bot commented Dec 23, 2024 •

edited

Loading

github-actions bot commented Dec 23, 2024 •

edited

Loading

github-actions bot commented Dec 24, 2024

chore(deps): update all non-major dependencies #501

Are you sure you want to change the base?

chore(deps): update all non-major dependencies #501

Conversation

renovate bot commented Dec 23, 2024 • edited Loading

Release Notes

Changelog

Changelog

⚡Release highlights and summary⚡

Changelog

Bug Fix

Feature

Bug Fix

Feature

Bug Fix

Features

Bug Fixes

Documentation

Dependencies

v3.16.4: Helm v3.16.4

Installation and Upgrading

What's Next

Changelog

Breaking changes

Features

Improvements

Bugfixes

Configuration

github-actions bot commented Dec 23, 2024 • edited Loading

🦙 MegaLinter status: ❌ ERROR

github-actions bot commented Dec 24, 2024

Trivy image scan report

ghcr.io/chgl/kube-powertools:pr-501 (ubuntu 22.04)

128 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 90 LOW: 38)

No Misconfigurations found

Node.js

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

No Misconfigurations found

Python

No Vulnerabilities found

No Misconfigurations found

root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version

24 known vulnerabilities found (CRITICAL: 1 HIGH: 6 MEDIUM: 17 LOW: 0)

No Misconfigurations found

root/.local/share/helm/plugins/helm-push/bin/helm-cm-push

42 known vulnerabilities found (MEDIUM: 29 LOW: 0 CRITICAL: 3 HIGH: 10)

No Misconfigurations found

root/.local/share/helm/plugins/helm-schema/bin/helm-schema

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

No Misconfigurations found

root/gcrane

3 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 2 LOW: 0)

No Misconfigurations found

root/krane

5 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 2 LOW: 1)

No Misconfigurations found

usr/local/bin/ah

3 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 1)

No Misconfigurations found

usr/local/bin/chart-doc-gen

17 known vulnerabilities found (MEDIUM: 12 LOW: 0 CRITICAL: 1 HIGH: 4)

No Misconfigurations found

usr/local/bin/conftest

2 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 0)

No Misconfigurations found

usr/local/bin/container-structure-test

1 known vulnerabilities found (HIGH: 0 MEDIUM: 0 LOW: 0 CRITICAL: 1)

No Misconfigurations found

usr/local/bin/cosign

3 known vulnerabilities found (CRITICAL: 1 HIGH: 1 MEDIUM: 0 LOW: 1)

No Misconfigurations found

usr/local/bin/crane

3 known vulnerabilities found (HIGH: 1 MEDIUM: 2 LOW: 0 CRITICAL: 0)

No Misconfigurations found

usr/local/bin/ct

8 known vulnerabilities found (CRITICAL: 1 HIGH: 2 MEDIUM: 5 LOW: 0)

No Misconfigurations found

usr/local/bin/gomplate

1 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 0 LOW: 0)

No Misconfigurations found

renovate bot commented Dec 23, 2024 •

edited

Loading

`v3.16.4`: Helm v3.16.4

github-actions bot commented Dec 23, 2024 •

edited

Loading

`ghcr.io/chgl/kube-powertools:pr-501 (ubuntu 22.04)`

`Node.js`

`Python`

`root/.local/share/helm/plugins/helm-local-chart-version/local-chart-version`

`root/.local/share/helm/plugins/helm-push/bin/helm-cm-push`

`root/.local/share/helm/plugins/helm-schema/bin/helm-schema`

`root/gcrane`

`root/krane`

`usr/local/bin/ah`

`usr/local/bin/chart-doc-gen`

`usr/local/bin/conftest`

`usr/local/bin/container-structure-test`

`usr/local/bin/cosign`

`usr/local/bin/crane`

`usr/local/bin/ct`

`usr/local/bin/gomplate`

`usr/local/bin/helm`

`usr/local/bin/helm-docs`

`usr/local/bin/kube-linter`

`usr/local/bin/kube-score`

`usr/local/bin/kubeconform`

`usr/local/bin/kubectl`

`usr/local/bin/kubent`

`usr/local/bin/kubepug`

`usr/local/bin/kubescape`

`usr/local/bin/kubesec`

`usr/local/bin/kubeval`

`usr/local/bin/kustomize`

`usr/local/bin/kyverno`

`usr/local/bin/nova`

`usr/local/bin/pluto`

`usr/local/bin/polaris`

`usr/local/bin/s5cmd`

`usr/local/bin/trivy`