OSV - Open Source Vulnerabilities

CLEANSTART-2026-GK29346

CleanStart/kyverno-policy-reporter-kyverno-plugin-fips

Security fixes for CVE-2025-15558, CVE-2025-47907, CVE-2025-66564, CVE-2026-1229, CVE-2026-22039, CVE-2026-22703, CVE-2026-22772, CVE-2026-23831, CVE-2026-23881, CVE-2026-24051, CVE-2026-24117, CVE-2026-24137, CVE-2026-25679, CVE-2026-26958, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-2464-8j7c-4cjm, ghsa-29wx-vh33-7x7r, ghsa-2x5j-vhc8-9cwm, ghsa-459x-q9hg-4gpq, ghsa-4qg8-fj49-pxjh, ghsa-4vq8-7jfc-9cvp, ghsa-6m8w-jc87-6cr7, ghsa-88jx-383q-w4qc, ghsa-95pr-fxf5-86gv, ghsa-c5q2-7r4c-mv6g, ghsa-c6gw-w398-hv78, ghsa-c77r-fh37-x2px, ghsa-f83f-xpx7-ffpw, ghsa-fv92-fjc5-jj9h, ghsa-jrr2-x33p-6hvc, ghsa-mh63-6h87-95cp, ghsa-mqqf-5wvp-8fh8, ghsa-p77j-4mvh-x3m3, ghsa-qjvc-p88j-j9rm, ghsa-r5p3-955p-5ggq, ghsa-v23v-6jw2-98fq, ghsa-v6v8-xj6m-xwqh, ghsa-xw73-rw38-6vjc applied in versions: 1.4.2-r2, 1.4.2-r4, 1.4.2-r6, 1.4.2-r7

3 days ago

Fix available

MINI-q39w-mwmm-7xrg

MinimOS/eks-kube-apiserver-fips-1.31
MinimOS/eks-kube-apiserver-fips-1.31-compat
MinimOS/eks-kube-controller-manager-fips-1.31
MinimOS/eks-kube-controller-manager-fips-1.31-compat
MinimOS/eks-kube-proxy-fips-1.31
... 8 more

See record for full details

02 Feb

No fix available

MINI-v2cq-48w8-wxq2

MinimOS/eks-kube-apiserver-1.31
MinimOS/eks-kube-apiserver-1.31-compat
MinimOS/eks-kube-controller-manager-1.31
MinimOS/eks-kube-controller-manager-1.31-compat
MinimOS/eks-kube-proxy-1.31
... 8 more

See record for full details

02 Feb

No fix available

CLEANSTART-2026-PD17156

CleanStart/kyverno-policy-reporter-kyverno-plugin-fips

Cancelling a query (e

30 Jan

Fix available
Severity - 9.8 (Critical)

MINI-775m-722r-3c8h

MinimOS/eks-kube-apiserver-fips-1.32
MinimOS/eks-kube-apiserver-fips-1.32-compat
MinimOS/eks-kube-controller-manager-fips-1.32
MinimOS/eks-kube-controller-manager-fips-1.32-compat
MinimOS/eks-kube-proxy-fips-1.32
... 8 more

See record for full details

25 Jan

No fix available

MINI-gfh6-j532-m85v

MinimOS/eks-kube-apiserver-1.32
MinimOS/eks-kube-apiserver-1.32-compat
MinimOS/eks-kube-controller-manager-1.32
MinimOS/eks-kube-controller-manager-1.32-compat
MinimOS/eks-kube-proxy-1.32
... 8 more

See record for full details

25 Jan

No fix available

MINI-82rx-fv6c-q65j

MinimOS/kube-apiserver-fips-1.32
MinimOS/kube-controller-manager-fips-1.32
MinimOS/kube-proxy-fips-1.32
MinimOS/kube-scheduler-fips-1.32
MinimOS/kubectl-fips-1.32
... 1 more

See record for full details

04 Sep 2025

No fix available

MINI-4297-56c8-4579

MinimOS/terragrunt-atlantis-config

See record for full details

20 Jul 2025

Fix available

MINI-rf5w-xh2w-wj6j

Not specified

See record for full details

29 May 2025

No fix available

MINI-87q2-pfw9-w663

MinimOS/kube-apiserver-1.32
MinimOS/kube-controller-manager-1.32
MinimOS/kube-proxy-1.32
MinimOS/kube-scheduler-1.32
MinimOS/kubectl-1.32
... 2 more

See record for full details

29 May 2025

No fix available

MINI-fw3v-w8c5-p3p2

MinimOS/traefik-3

See record for full details

29 May 2025

Fix available

MINI-37jw-cgcv-8qh5

MinimOS/influxd-2.7
MinimOS/influxd-2.7-oci-entrypoint

See record for full details

29 May 2025

No fix available

GO-2024-2631

Go/github.com/go-jose/go-jose/v3
Go/github.com/go-jose/go-jose/v4
Go/gopkg.in/go-jose/go-jose.v2
Go/gopkg.in/square/go-jose.v2

Decompression bomb vulnerability in github.com/go-jose/go-jose

15 Mar 2024

Fix available

CVE-2024-28180

github.com/go-jose/go-jose

Go JOSE vulnerable to Improper Handling of Highly Compressed Data (Data Amplification)

09 Mar 2024

Fix available
Severity - 4.3 (Medium)

GHSA-c5q2-7r4c-mv6g

Go/github.com/go-jose/go-jose/v3
Go/github.com/go-jose/go-jose/v4
Go/gopkg.in/go-jose/go-jose.v2
Go/gopkg.in/square/go-jose.v2

Go JOSE vulnerable to Improper Handling of Highly Compressed Data (Data Amplification)

07 Mar 2024

Fix available
Severity - 4.3 (Medium)