You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Gomega has been flagged by Whitesource security scanning software with a denial of service vulnerability to the kube-apiserver (e.g. sending malicious yaml payloads that consume excessive CPU cycles). Gomega directly imports v2.2.4.
Are there any plans to migrate gomega to use v.2.2.8? We've had to downgrade gingko/gomega versions to avoid this verison of yaml used, but would prefer to use the latest. Please see links below.
Gomega has been flagged by Whitesource security scanning software with a denial of service vulnerability to the kube-apiserver (e.g. sending malicious yaml payloads that consume excessive CPU cycles). Gomega directly imports v2.2.4.
Are there any plans to migrate gomega to use v.2.2.8? We've had to downgrade gingko/gomega versions to avoid this verison of yaml used, but would prefer to use the latest. Please see links below.
NIST Vulernability DB Reference
Issue reference in Kubernetes git repo
The text was updated successfully, but these errors were encountered: