Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump k8s.io/api from 0.32.0 to 0.32.2 #111

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Bump k8s.io/api from 0.32.0 to 0.32.2

1e3e438
Select commit
Loading
Failed to load commit list.
Open

Bump k8s.io/api from 0.32.0 to 0.32.2 #111

Bump k8s.io/api from 0.32.0 to 0.32.2
1e3e438
Select commit
Loading
Failed to load commit list.
IBM Mend app / Mend Security Check failed Feb 17, 2025 in 1m 3s

Security Report

1 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2024-45338

Path to dependency file: /go.mod

Path to vulnerable library: /go/pkg/mod/cache/download/golang.org/x/net/@v/v0.30.0.mod

Dependency Hierarchy:

-> k8s.io/Apimachinery-v0.32.2 (Root Library)

   -> ❌ golang.org/x/net-v0.30.0 (Vulnerable Library)

Medium 5.3 golang.org/x/net-v0.30.0 Upgrade to version: github.com/golang/net-v0.33.0 None

Base branch total remaining vulnerabilities: 0
Base branch commit: df8ea4ae6d31b3ae2e1545e7b1f637a0f230919e


Total libraries scanned: 63

Scan token: 968dccc0e974401b971692312893a9ab

View more details on IBM Mend app