CVE-2022-1996, CVE-2023-39325, CVE-2022-21698, CVE-2023-44487, SNYK-GOLANG-GITHUBCOMEMICKLEIGORESTFULV3-2435654, GHSA-m425-mq94-257g, CVE-2023-45142, CVE-2019-3826, CVE-2023-3978 #1358
Labels
kind/feature
Categorizes issue or PR as related to a new feature.
triage/accepted
Indicates an issue or PR is ready to be actively worked on.
Comments
k8s-ci-robot
added
kind/feature
|
/triage accepted |
k8s-ci-robot
added
triage/accepted
|
this issue does not help much, i know there is a couple of cves to fix, this this should be written in a little better way |
|
I believe most (if not all) of these don't affect https://github.com/kubernetes-sigs/metrics-server/releases/tag/v0.7.1 Should we close this issue? Also CVE-2019-3826 doesn't affect metrics-server, was withdrawn because it doesn't apply to the Prometheus go package Perhaps we can use VEX in the future to communicate this to users instead |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What would you like to be added:
Fix vulnerabilities issues.
Why is this needed:
/kind feature
The text was updated successfully, but these errors were encountered: