Skip to content

chore(deps): security update#16223

Open
kumahq[bot] wants to merge 1 commit intorelease-2.12from
chore/security-updates-release-2.12
Open

chore(deps): security update#16223
kumahq[bot] wants to merge 1 commit intorelease-2.12from
chore/security-updates-release-2.12

Conversation

@kumahq
Copy link
Copy Markdown
Contributor

@kumahq kumahq Bot commented Apr 11, 2026
edited
Loading

Scan output:

Before update:

OSV URL CVSS ECOSYSTEM PACKAGE VERSION SOURCE
https://osv.dev/GO-2026-4883 6.8 Go github.com/docker/docker 28.3.3 incompatible
https://osv.dev/GHSA-pxq6-2prw-chj9
https://osv.dev/GO-2026-4887 8.8 Go github.com/docker/docker 28.3.3 incompatible
https://osv.dev/GHSA-x744-4wpc-v9h2
https://osv.dev/GHSA-hr2v-4r36-88hr 4.8 Go helm.sh/helm/v3 3.18.6 go.mod

After update:

OSV URL CVSS ECOSYSTEM PACKAGE VERSION SOURCE
https://osv.dev/GO-2026-4883 6.8 Go github.com/docker/docker 28.3.3 incompatible
https://osv.dev/GHSA-pxq6-2prw-chj9
https://osv.dev/GO-2026-4887 8.8 Go github.com/docker/docker 28.3.3 incompatible
https://osv.dev/GHSA-x744-4wpc-v9h2

If a package is showing up in the scan but the script is not trying to update it then it might be because there is no fixed version yet.

@kumahq kumahq Bot added dependencies Pull requests that update a dependency file release-2.12 labels Apr 11, 2026
@kumahq kumahq Bot requested a review from a team as a code owner April 11, 2026 04:11
@kumahq kumahq Bot requested review from lukidzi and slonka April 11, 2026 04:11
@kumahq kumahq Bot force-pushed the chore/security-updates-release-2.12 branch 5 times, most recently from ce0fafd to e07d8e4 Compare April 21, 2026 04:08
@kumahq kumahq Bot force-pushed the chore/security-updates-release-2.12 branch 4 times, most recently from 5adda57 to 3491c76 Compare April 28, 2026 04:21
@kumahq kumahq Bot force-pushed the chore/security-updates-release-2.12 branch from 3491c76 to 017a443 Compare April 29, 2026 04:19
@kumahq
chore(deps): security update
f827ca9 
Signed-off-by: kumahq[bot] <110050114+kumahq[bot]@users.noreply.github.com>
@kumahq kumahq Bot force-pushed the chore/security-updates-release-2.12 branch from 017a443 to f827ca9 Compare April 30, 2026 04:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@slonka slonka Awaiting requested review from slonka slonka is a code owner automatically assigned from kumahq/kuma-maintainers

@lukidzi lukidzi Awaiting requested review from lukidzi lukidzi is a code owner automatically assigned from kumahq/kuma-maintainers

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file release-2.12

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants