workflow-controller:3.5.15-16.7

Inactive branch 3.5! This artifact is no longer continuously scanned and new versions are no longer expected.

Signed

Registered 4 days ago

Signed

Version:

3.5.15

Revision:

16.7

Architecture:

x86_64

Size:

31 MB

Digest:

sha256:caebda5b6465dcc36d710d653b62c973e271ddc46c9f6e539ce2cad181e8bb76

Base image

SLE BCI-micro 15.7-55.8

Operating system

SLE 15.7

ID	Severity	Fixable	Package	Installed version	Fixed version
CVE-2025-32445	CRITICAL	Yes	github.com/argoproj/argo-events	v1.7.3	1.9.6
CVE-2026-33186	CRITICAL	Yes	google.golang.org/grpc	v1.64.0	1.79.3
CVE-2025-68156	HIGH	Yes	github.com/expr-lang/expr	v1.17.5	1.17.7
CVE-2026-34040	HIGH	Yes	github.com/docker/docker	v27.1.1+incompatible	29.3.1
CVE-2026-32286	HIGH	No	github.com/jackc/pgproto3/v2	v2.3.3
CVE-2025-15558	HIGH	Yes	github.com/docker/cli	v24.0.7+incompatible	29.2.0
CVE-2026-34986	HIGH	Yes	github.com/go-jose/go-jose/v3	v3.0.3	3.0.5
CVE-2025-22870	MEDIUM	Yes	golang.org/x/net	v0.33.0	0.36.0
CVE-2025-22872	MEDIUM	Yes	golang.org/x/net	v0.33.0	0.38.0
CVE-2025-58181	MEDIUM	Yes	golang.org/x/crypto	v0.35.0	0.45.0
CVE-2025-27144	MEDIUM	Yes	github.com/go-jose/go-jose/v3	v3.0.3	3.0.4
CVE-2025-47914	MEDIUM	Yes	golang.org/x/crypto	v0.35.0	0.45.0
CVE-2026-33997	MEDIUM	Yes	github.com/docker/docker	v27.1.1+incompatible	29.3.1
GHSA-xr7q-jx4m-x55m	LOW	Yes	google.golang.org/grpc	v1.64.0	1.64.1
CVE-2025-54410	LOW	Yes	github.com/docker/docker	v27.1.1+incompatible	25.0.13, 28.0.0