Vulnerability Scan #433
vulnerability.yml
on: schedule
Dependency Review
govulncheck
51s
Annotations
10 errors and 1 warning
|
govulncheck
controllers.PackageReconciler.Reconcile calls errors.StructuralError.Error
|
|
govulncheck
controllers.PackageReconciler.Reconcile calls errors.SignatureError.Error
|
|
govulncheck
controllers.PackageReconciler.Reconcile calls errors.InvalidArgumentError.Error
|
|
govulncheck
driver.init calls action.init, which eventually calls elgamal.init
|
|
govulncheck
driver.init calls action.init, which eventually calls clearsign.init
|
|
govulncheck
bundle.registryClient.DownloadBundle calls bytes.TrimSpace, which eventually calls clearsign.Decode
|
|
govulncheck
driver.helmDriver.getChart calls action.ChartPathOptions.LocateChart, which eventually calls clearsign.Decode
|
|
govulncheck
v1alpha1.BundlePackage.GetJsonSchema calls io.ReadAll, which calls armor.openpgpReader.Read
|
|
govulncheck
driver.init calls action.init, which eventually calls armor.init
|
|
govulncheck
driver.helmDriver.getChart calls action.ChartPathOptions.LocateChart, which eventually calls armor.Decode
|
|
govulncheck
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: actions/setup-go@v5. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|