CVE-2024-45338

[srose-axon]

Our most recent security scans found CVE-2024-45338 on the latest kubectl 1.31.7 due to golang.org/x/net/html being on v0.26.0. Is there a planned fix/release to address this?

[k8s-ci-robot]

This issue is currently awaiting triage.

SIG CLI takes a lead on issue triage for this repo, but any Kubernetes member can accept issues by applying the triage/accepted label.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.