-
Notifications
You must be signed in to change notification settings - Fork 227
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
kots/1.117.5 package update #30365
kots/1.117.5 package update #30365
Conversation
octo-sts
bot
commented
Oct 8, 2024
Signed-off-by: wolfi-bot <[email protected]>
Package kots: Click to expand/collapsePackage kots: Package kots-symlink-compat: Click to expand/collapsePackage kots-symlink-compat: malcontent found differences: Click to expand/collapseDeleted: kots-symlink-compat/var/lib/db/sbom/kots-symlink-compat-1.117.4-r0.spdx.json [
|
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
-MEDIUM | net/download | download files | downloadLocation |
-LOW | ref/site/url | contains embedded HTTPS URLs | https://spdx.org/spdxdocs/chainguard/melange/edc0cb2074b76bf76f4ab8362bdf |
Added: kots-symlink-compat/var/lib/db/sbom/kots-symlink-compat-1.117.5-r0.spdx.json [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | net/download | download files | downloadLocation |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://spdx.org/spdxdocs/chainguard/melange/8a8618a7cc6eb86dd1d7c0c2be02 |
Changed: /tmp/wolfictl-apk-656750591/kots/usr/bin/kotsadm
1 new behaviors
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | security_controls/linux/ufw | interacts with the ufw firewall | allow deny disable enable ufw |
Changed: /tmp/wolfictl-apk-656750591/kots/usr/bin/kots
Moved: kots/var/lib/db/sbom/kots-1.117.4-r0.spdx.json -> /tmp/wolfictl-apk-656750591/kots/var/lib/db/sbom/kots-1.117.5-r0.spdx.json (similarity: 0.99)
malcontent detected files with a risk score equal or higher than 'CRITICAL': Click to expand/collapse/tmp/malcontent1378100500/packages/x86_64/kots-1.117.5-r0.apk/usr/bin/kots [🚨 CRITICAL]| RISK | KEY | DESCRIPTION | EVIDENCE |