diff --git a/core/prometheus/2.0.26/CHANGELOG.md b/core/prometheus/2.0.28/CHANGELOG.md similarity index 85% rename from core/prometheus/2.0.26/CHANGELOG.md rename to core/prometheus/2.0.28/CHANGELOG.md index 8e5d8dab88..ae9d4aae1c 100644 --- a/core/prometheus/2.0.26/CHANGELOG.md +++ b/core/prometheus/2.0.28/CHANGELOG.md @@ -1,6 +1,24 @@ # Changelog
+ +### [prometheus-2.0.28](https://github.com/truecharts/apps/compare/prometheus-2.0.27...prometheus-2.0.28) (2022-04-03) + +#### Chore + +* update docker general non-major + + + + +### [prometheus-2.0.27](https://github.com/truecharts/apps/compare/prometheus-2.0.26...prometheus-2.0.27) (2022-04-02) + +#### Chore + +* update docker general non-major ([#2383](https://github.com/truecharts/apps/issues/2383)) + + + ### [prometheus-2.0.26](https://github.com/truecharts/apps/compare/prometheus-2.0.25...prometheus-2.0.26) (2022-04-01) @@ -79,21 +97,3 @@ ### [prometheus-2.0.17](https://github.com/truecharts/apps/compare/prometheus-2.0.16...prometheus-2.0.17) (2022-03-26) -#### Chore - -* bump all apps to trigger ci - - - - -### [prometheus-2.0.15](https://github.com/truecharts/apps/compare/prometheus-2.0.14...prometheus-2.0.15) (2022-03-26) - -#### Chore - -* update docker general non-major - - - - -### [prometheus-2.0.14](https://github.com/truecharts/apps/compare/prometheus-2.0.13...prometheus-2.0.14) (2022-03-24) - diff --git a/core/prometheus/2.0.26/CONFIG.md b/core/prometheus/2.0.28/CONFIG.md similarity index 100% rename from core/prometheus/2.0.26/CONFIG.md rename to core/prometheus/2.0.28/CONFIG.md diff --git a/core/prometheus/2.0.26/Chart.lock b/core/prometheus/2.0.28/Chart.lock similarity index 89% rename from core/prometheus/2.0.26/Chart.lock rename to core/prometheus/2.0.28/Chart.lock index 31335675f8..8c92937086 100644 --- a/core/prometheus/2.0.26/Chart.lock +++ b/core/prometheus/2.0.28/Chart.lock @@ -9,4 +9,4 @@ dependencies: repository: https://charts.bitnami.com/bitnami version: 2.2.14 digest: sha256:5e8d8338745b676390e670bfa53b8af0dfbea98fd82a11eb81704923ab5925f8 -generated: "2022-04-01T03:50:03.053940499Z" +generated: "2022-04-03T06:44:40.539224756Z" diff --git a/core/prometheus/2.0.26/Chart.yaml b/core/prometheus/2.0.28/Chart.yaml similarity index 98% rename from core/prometheus/2.0.26/Chart.yaml rename to core/prometheus/2.0.28/Chart.yaml index e25f2611cc..84c9e41dab 100644 --- a/core/prometheus/2.0.26/Chart.yaml +++ b/core/prometheus/2.0.28/Chart.yaml @@ -28,7 +28,7 @@ sources: - https://github.com/prometheus-community/helm-charts - https://github.com/prometheus-operator/kube-prometheus type: application -version: 2.0.26 +version: 2.0.28 annotations: truecharts.org/catagories: | - metrics diff --git a/core/prometheus/2.0.26/README.md b/core/prometheus/2.0.28/README.md similarity index 100% rename from core/prometheus/2.0.26/README.md rename to core/prometheus/2.0.28/README.md diff --git a/core/prometheus/2.0.26/app-readme.md b/core/prometheus/2.0.28/app-readme.md similarity index 100% rename from core/prometheus/2.0.26/app-readme.md rename to core/prometheus/2.0.28/app-readme.md diff --git a/core/prometheus/2.0.26/charts/common-9.2.6.tgz b/core/prometheus/2.0.28/charts/common-9.2.6.tgz similarity index 100% rename from core/prometheus/2.0.26/charts/common-9.2.6.tgz rename to core/prometheus/2.0.28/charts/common-9.2.6.tgz diff --git a/core/prometheus/2.0.26/charts/kube-state-metrics-2.2.14.tgz b/core/prometheus/2.0.28/charts/kube-state-metrics-2.2.14.tgz similarity index 100% rename from core/prometheus/2.0.26/charts/kube-state-metrics-2.2.14.tgz rename to core/prometheus/2.0.28/charts/kube-state-metrics-2.2.14.tgz diff --git a/core/prometheus/2.0.26/charts/node-exporter-2.4.6.tgz b/core/prometheus/2.0.28/charts/node-exporter-2.4.6.tgz similarity index 100% rename from core/prometheus/2.0.26/charts/node-exporter-2.4.6.tgz rename to core/prometheus/2.0.28/charts/node-exporter-2.4.6.tgz diff --git a/core/prometheus/2.0.26/crds/crd-alertmanager-config.yaml b/core/prometheus/2.0.28/crds/crd-alertmanager-config.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-alertmanager-config.yaml rename to core/prometheus/2.0.28/crds/crd-alertmanager-config.yaml diff --git a/core/prometheus/2.0.26/crds/crd-alertmanager.yaml b/core/prometheus/2.0.28/crds/crd-alertmanager.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-alertmanager.yaml rename to core/prometheus/2.0.28/crds/crd-alertmanager.yaml diff --git a/core/prometheus/2.0.26/crds/crd-podmonitor.yaml b/core/prometheus/2.0.28/crds/crd-podmonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-podmonitor.yaml rename to core/prometheus/2.0.28/crds/crd-podmonitor.yaml diff --git a/core/prometheus/2.0.26/crds/crd-probes.yaml b/core/prometheus/2.0.28/crds/crd-probes.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-probes.yaml rename to core/prometheus/2.0.28/crds/crd-probes.yaml diff --git a/core/prometheus/2.0.26/crds/crd-prometheus.yaml b/core/prometheus/2.0.28/crds/crd-prometheus.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-prometheus.yaml rename to core/prometheus/2.0.28/crds/crd-prometheus.yaml diff --git a/core/prometheus/2.0.26/crds/crd-prometheusrules.yaml b/core/prometheus/2.0.28/crds/crd-prometheusrules.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-prometheusrules.yaml rename to core/prometheus/2.0.28/crds/crd-prometheusrules.yaml diff --git a/core/prometheus/2.0.26/crds/crd-servicemonitor.yaml b/core/prometheus/2.0.28/crds/crd-servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-servicemonitor.yaml rename to core/prometheus/2.0.28/crds/crd-servicemonitor.yaml diff --git a/core/prometheus/2.0.26/crds/crd-thanosrulers.yaml b/core/prometheus/2.0.28/crds/crd-thanosrulers.yaml similarity index 100% rename from core/prometheus/2.0.26/crds/crd-thanosrulers.yaml rename to core/prometheus/2.0.28/crds/crd-thanosrulers.yaml diff --git a/core/prometheus/2.0.26/helm-values.md b/core/prometheus/2.0.28/helm-values.md similarity index 98% rename from core/prometheus/2.0.26/helm-values.md rename to core/prometheus/2.0.28/helm-values.md index 44cba737a2..4e1acc5357 100644 --- a/core/prometheus/2.0.26/helm-values.md +++ b/core/prometheus/2.0.28/helm-values.md @@ -88,7 +88,7 @@ You will, however, be able to use all values referenced in the common chart here | alertmanager.volumeMounts | list | `[]` | | | alertmanager.volumes | list | `[]` | | | alertmanagerImage.repository | string | `"tccr.io/truecharts/alertmanager"` | | -| alertmanagerImage.tag | string | `"v0.24.0@sha256:660b72658c8aec696dbddbfdec6221fc29895331573929bda5b205771ce95c23"` | | +| alertmanagerImage.tag | string | `"v0.24.0@sha256:701b6711573f544a8118e8dbe15b11297c42570de79fe4383449ab8e8270c9d4"` | | | coreDns.enabled | bool | `true` | | | coreDns.namespace | string | `"kube-system"` | | | coreDns.service.enabled | bool | `true` | | @@ -104,7 +104,7 @@ You will, however, be able to use all values referenced in the common chart here | exporters.node-exporter.enabled | bool | `true` | | | global.labels | object | `{}` | | | image.repository | string | `"tccr.io/truecharts/prometheus-operator"` | | -| image.tag | string | `"v0.55.1@sha256:974f3fd993bf0e16d2a1247e0463d38af0546c1882e24c3ddacf9fd3a234bdd5"` | | +| image.tag | string | `"v0.55.1@sha256:0ada927f7cab9d33797414daacc1d0d3f4a8e5ff365fb4167d5145c540941f3c"` | | | ingress.alertmanager.enabled | bool | `false` | | | ingress.main.enabled | bool | `false` | | | ingress.thanos.enabled | bool | `false` | | @@ -319,7 +319,7 @@ You will, however, be able to use all values referenced in the common chart here | prometheus.volumes | list | `[]` | | | prometheus.walCompression | bool | `false` | | | prometheusImage.repository | string | `"tccr.io/truecharts/prometheus"` | | -| prometheusImage.tag | string | `"v2.33.5@sha256:d46345aaba57e7cdcb6982dfde78e332c5be7ddcb72a7eb9f36893f04e0a1e5d"` | | +| prometheusImage.tag | string | `"v2.33.5@sha256:b0d32e9645d90384f2bf27b95c659528eab5ebaeaa6b9445fa89d39f4ef85568"` | | | rbac | object | `{"enabled":true,"rules":[{"apiGroups":["apiextensions.k8s.io"],"resources":["customresourcedefinitions"],"verbs":["create"]},{"apiGroups":["apiextensions.k8s.io"],"resourceNames":["alertmanagers.monitoring.coreos.com","podmonitors.monitoring.coreos.com","prometheuses.monitoring.coreos.com","prometheusrules.monitoring.coreos.com","servicemonitors.monitoring.coreos.com","thanosrulers.monitoring.coreos.com","probes.monitoring.coreos.com"],"resources":["customresourcedefinitions"],"verbs":["get","update"]},{"apiGroups":["monitoring.coreos.com"],"resources":["alertmanagers","alertmanagers/finalizers","alertmanagerconfigs","prometheuses","prometheuses/finalizers","thanosrulers","thanosrulers/finalizers","servicemonitors","podmonitors","probes","prometheusrules"],"verbs":["*"]},{"apiGroups":["apps"],"resources":["statefulsets"],"verbs":["*"]},{"apiGroups":[""],"resources":["configmaps","secrets"],"verbs":["*"]},{"apiGroups":[""],"resources":["pods"],"verbs":["list","delete"]},{"apiGroups":[""],"resources":["services","services/finalizers","endpoints"],"verbs":["get","create","update","delete"]},{"apiGroups":[""],"resources":["nodes"],"verbs":["list","watch"]},{"apiGroups":[""],"resources":["namespaces"],"verbs":["get","list","watch"]},{"apiGroups":["networking.k8s.io"],"resources":["ingresses"],"verbs":["get","list","watch"]}]}` | Whether Role Based Access Control objects like roles and rolebindings should be created | | securityContext.readOnlyRootFilesystem | bool | `false` | | | service.alertmanager.enabled | bool | `true` | | diff --git a/core/prometheus/2.0.26/ix_values.yaml b/core/prometheus/2.0.28/ix_values.yaml similarity index 99% rename from core/prometheus/2.0.26/ix_values.yaml rename to core/prometheus/2.0.28/ix_values.yaml index 1125bc89d8..6ec6d3c165 100644 --- a/core/prometheus/2.0.26/ix_values.yaml +++ b/core/prometheus/2.0.28/ix_values.yaml @@ -1,10 +1,10 @@ image: repository: tccr.io/truecharts/prometheus-operator - tag: v0.55.1@sha256:974f3fd993bf0e16d2a1247e0463d38af0546c1882e24c3ddacf9fd3a234bdd5 + tag: v0.55.1@sha256:0ada927f7cab9d33797414daacc1d0d3f4a8e5ff365fb4167d5145c540941f3c prometheusImage: repository: tccr.io/truecharts/prometheus - tag: v2.33.5@sha256:d46345aaba57e7cdcb6982dfde78e332c5be7ddcb72a7eb9f36893f04e0a1e5d + tag: v2.33.5@sha256:b0d32e9645d90384f2bf27b95c659528eab5ebaeaa6b9445fa89d39f4ef85568 thanosImage: repository: tccr.io/truecharts/thanos @@ -12,7 +12,7 @@ thanosImage: alertmanagerImage: repository: tccr.io/truecharts/alertmanager - tag: v0.24.0@sha256:660b72658c8aec696dbddbfdec6221fc29895331573929bda5b205771ce95c23 + tag: v0.24.0@sha256:701b6711573f544a8118e8dbe15b11297c42570de79fe4383449ab8e8270c9d4 global: labels: {} diff --git a/core/prometheus/2.0.26/questions.yaml b/core/prometheus/2.0.28/questions.yaml similarity index 100% rename from core/prometheus/2.0.26/questions.yaml rename to core/prometheus/2.0.28/questions.yaml diff --git a/core/prometheus/2.0.26/security.md b/core/prometheus/2.0.28/security.md similarity index 99% rename from core/prometheus/2.0.26/security.md rename to core/prometheus/2.0.28/security.md index 53f0ba99a4..9426de968f 100644 --- a/core/prometheus/2.0.26/security.md +++ b/core/prometheus/2.0.28/security.md @@ -12,9 +12,9 @@ hide: ##### Scan Results #### Chart Object: prometheus/charts/kube-state-metrics/templates/deployment.yaml - - + + | Type | Misconfiguration ID | Check | Severity | Explaination | Links | |:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| | Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'kube-state-metrics' of Deployment 'RELEASE-NAME-kube-state-metrics' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| @@ -29,25 +29,25 @@ hide: | Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'kube-state-metrics' of Deployment 'RELEASE-NAME-kube-state-metrics' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| | Kubernetes Security Check | KSV029 | A root primary or supplementary GID set | LOW |
Expand... Containers should be forbidden from running with a root primary or supplementary GID.


Deployment 'RELEASE-NAME-kube-state-metrics' should set 'spec.securityContext.runAsGroup', 'spec.securityContext.supplementalGroups[*]' and 'spec.securityContext.fsGroup' to integer greater than 0
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv029
| - + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | Type | Misconfiguration ID | Check | Severity | Explaination | Links | |:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| | Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'node-exporter' of DaemonSet 'RELEASE-NAME-node-exporter' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| @@ -64,31 +64,31 @@ hide: | Kubernetes Security Check | KSV023 | hostPath volumes mounted | MEDIUM |
Expand... HostPath volumes must be forbidden.


DaemonSet 'RELEASE-NAME-node-exporter' should not set 'spec.template.volumes.hostPath'
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline
https://avd.aquasec.com/appshield/ksv023
| | Kubernetes Security Check | KSV029 | A root primary or supplementary GID set | LOW |
Expand... Containers should be forbidden from running with a root primary or supplementary GID.


DaemonSet 'RELEASE-NAME-node-exporter' should set 'spec.securityContext.runAsGroup', 'spec.securityContext.supplementalGroups[*]' and 'spec.securityContext.fsGroup' to integer greater than 0
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv029
| - + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | Type | Misconfiguration ID | Check | Severity | Explaination | Links | |:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| | Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'hostpatch' of Deployment 'RELEASE-NAME-prometheus' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| @@ -145,35 +145,35 @@ hide: | Kubernetes Security Check | KSV023 | hostPath volumes mounted | MEDIUM |
Expand... HostPath volumes must be forbidden.


Deployment 'RELEASE-NAME-prometheus' should not set 'spec.template.volumes.hostPath'
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline
https://avd.aquasec.com/appshield/ksv023
| | Kubernetes Security Check | KSV029 | A root primary or supplementary GID set | LOW |
Expand... Containers should be forbidden from running with a root primary or supplementary GID.


Deployment 'RELEASE-NAME-prometheus' should set 'spec.securityContext.runAsGroup', 'spec.securityContext.supplementalGroups[*]' and 'spec.securityContext.fsGroup' to integer greater than 0
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv029
| - + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - - + + | No Misconfigurations found | |:---------------------------------| - + ## Containers @@ -181,7 +181,7 @@ hide: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 - tccr.io/truecharts/prometheus-operator:v0.55.1@sha256:974f3fd993bf0e16d2a1247e0463d38af0546c1882e24c3ddacf9fd3a234bdd5 + tccr.io/truecharts/prometheus-operator:v0.55.1@sha256:0ada927f7cab9d33797414daacc1d0d3f4a8e5ff365fb4167d5145c540941f3c bitnami/kube-state-metrics:2.4.2-debian-10-r18 bitnami/node-exporter:1.3.1-debian-10-r106 @@ -189,33 +189,33 @@ hide: #### Container: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 (alpine 3.15.2) - + **alpine** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| +| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| #### Container: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 (alpine 3.15.2) - + **alpine** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| -| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| +| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| -#### Container: tccr.io/truecharts/prometheus-operator:v0.55.1@sha256:974f3fd993bf0e16d2a1247e0463d38af0546c1882e24c3ddacf9fd3a234bdd5 (debian 10.12) - +#### Container: tccr.io/truecharts/prometheus-operator:v0.55.1@sha256:0ada927f7cab9d33797414daacc1d0d3f4a8e5ff365fb4167d5145c540941f3c (debian 10.12) + **debian** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | apt | CVE-2011-3374 | LOW | 1.8.2.3 | |
Expand...https://access.redhat.com/security/cve/cve-2011-3374
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480
https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html
https://seclists.org/fulldisclosure/2011/Sep/221
https://security-tracker.debian.org/tracker/CVE-2011-3374
https://snyk.io/vuln/SNYK-LINUX-APT-116518
https://ubuntu.com/security/CVE-2011-3374
| @@ -381,15 +381,14 @@ hide: | util-linux | CVE-2021-37600 | LOW | 2.33.1-0.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-37600
https://github.com/karelzak/util-linux/commit/1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c
https://github.com/karelzak/util-linux/issues/1395
https://nvd.nist.gov/vuln/detail/CVE-2021-37600
https://security.netapp.com/advisory/ntap-20210902-0002/
| | util-linux | CVE-2022-0563 | LOW | 2.33.1-0.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-0563
https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u
https://nvd.nist.gov/vuln/detail/CVE-2022-0563
https://security.netapp.com/advisory/ntap-20220331-0002/
| | wget | CVE-2021-31879 | MEDIUM | 1.20.1-1.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-31879
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31879
https://mail.gnu.org/archive/html/bug-wget/2021-02/msg00002.html
https://nvd.nist.gov/vuln/detail/CVE-2021-31879
https://savannah.gnu.org/bugs/?56909
https://security.netapp.com/advisory/ntap-20210618-0002/
| -| zlib1g | CVE-2018-25032 | HIGH | 1:1.2.11.dfsg-1 | |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| #### Container: bitnami/kube-state-metrics:2.4.2-debian-10-r18 (debian 10.12) - + **debian** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | apt | CVE-2011-3374 | LOW | 1.8.2.3 | |
Expand...https://access.redhat.com/security/cve/cve-2011-3374
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480
https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html
https://seclists.org/fulldisclosure/2011/Sep/221
https://security-tracker.debian.org/tracker/CVE-2011-3374
https://snyk.io/vuln/SNYK-LINUX-APT-116518
https://ubuntu.com/security/CVE-2011-3374
| @@ -555,23 +554,23 @@ hide: | util-linux | CVE-2021-37600 | LOW | 2.33.1-0.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-37600
https://github.com/karelzak/util-linux/commit/1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c
https://github.com/karelzak/util-linux/issues/1395
https://nvd.nist.gov/vuln/detail/CVE-2021-37600
https://security.netapp.com/advisory/ntap-20210902-0002/
| | util-linux | CVE-2022-0563 | LOW | 2.33.1-0.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-0563
https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u
https://nvd.nist.gov/vuln/detail/CVE-2022-0563
https://security.netapp.com/advisory/ntap-20220331-0002/
| | wget | CVE-2021-31879 | MEDIUM | 1.20.1-1.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-31879
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31879
https://mail.gnu.org/archive/html/bug-wget/2021-02/msg00002.html
https://nvd.nist.gov/vuln/detail/CVE-2021-31879
https://savannah.gnu.org/bugs/?56909
https://security.netapp.com/advisory/ntap-20210618-0002/
| -| zlib1g | CVE-2018-25032 | HIGH | 1:1.2.11.dfsg-1 | |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| +| zlib1g | CVE-2018-25032 | HIGH | 1:1.2.11.dfsg-1 | 1:1.2.11.dfsg-1+deb10u1 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| **gobinary** - + | No Vulnerabilities found | |:---------------------------------| - + #### Container: bitnami/node-exporter:1.3.1-debian-10-r106 (debian 10.12) - + **debian** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | apt | CVE-2011-3374 | LOW | 1.8.2.3 | |
Expand...https://access.redhat.com/security/cve/cve-2011-3374
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480
https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html
https://seclists.org/fulldisclosure/2011/Sep/221
https://security-tracker.debian.org/tracker/CVE-2011-3374
https://snyk.io/vuln/SNYK-LINUX-APT-116518
https://ubuntu.com/security/CVE-2011-3374
| @@ -737,19 +736,18 @@ hide: | util-linux | CVE-2021-37600 | LOW | 2.33.1-0.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-37600
https://github.com/karelzak/util-linux/commit/1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c
https://github.com/karelzak/util-linux/issues/1395
https://nvd.nist.gov/vuln/detail/CVE-2021-37600
https://security.netapp.com/advisory/ntap-20210902-0002/
| | util-linux | CVE-2022-0563 | LOW | 2.33.1-0.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2022-0563
https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u
https://nvd.nist.gov/vuln/detail/CVE-2022-0563
https://security.netapp.com/advisory/ntap-20220331-0002/
| | wget | CVE-2021-31879 | MEDIUM | 1.20.1-1.1 | |
Expand...https://access.redhat.com/security/cve/CVE-2021-31879
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31879
https://mail.gnu.org/archive/html/bug-wget/2021-02/msg00002.html
https://nvd.nist.gov/vuln/detail/CVE-2021-31879
https://savannah.gnu.org/bugs/?56909
https://security.netapp.com/advisory/ntap-20210618-0002/
| -| zlib1g | CVE-2018-25032 | HIGH | 1:1.2.11.dfsg-1 | |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| +| zlib1g | CVE-2018-25032 | HIGH | 1:1.2.11.dfsg-1 | 1:1.2.11.dfsg-1+deb10u1 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| **gobinary** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.6 | 0.3.7 |
Expand...https://go-review.googlesource.com/c/text/+/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| **gobinary** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | golang.org/x/text | CVE-2021-38561 | UNKNOWN | v0.3.6 | 0.3.7 |
Expand...https://go-review.googlesource.com/c/text/+/340830
https://go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
https://pkg.go.dev/vuln/GO-2021-0113
| - diff --git a/core/prometheus/2.0.26/templates/_helpers.tpl b/core/prometheus/2.0.28/templates/_helpers.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/_helpers.tpl rename to core/prometheus/2.0.28/templates/_helpers.tpl diff --git a/core/prometheus/2.0.26/templates/alertmanager/_alertmanager.tpl b/core/prometheus/2.0.28/templates/alertmanager/_alertmanager.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/alertmanager/_alertmanager.tpl rename to core/prometheus/2.0.28/templates/alertmanager/_alertmanager.tpl diff --git a/core/prometheus/2.0.26/templates/alertmanager/secrets.yaml b/core/prometheus/2.0.28/templates/alertmanager/secrets.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/alertmanager/secrets.yaml rename to core/prometheus/2.0.28/templates/alertmanager/secrets.yaml diff --git a/core/prometheus/2.0.26/templates/alertmanager/serviceaccount.yaml b/core/prometheus/2.0.28/templates/alertmanager/serviceaccount.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/alertmanager/serviceaccount.yaml rename to core/prometheus/2.0.28/templates/alertmanager/serviceaccount.yaml diff --git a/core/prometheus/2.0.26/templates/alertmanager/servicemonitor.yaml b/core/prometheus/2.0.28/templates/alertmanager/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/alertmanager/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/alertmanager/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/common.yaml b/core/prometheus/2.0.28/templates/common.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/common.yaml rename to core/prometheus/2.0.28/templates/common.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/core-dns/service.yaml b/core/prometheus/2.0.28/templates/exporters/core-dns/service.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/core-dns/service.yaml rename to core/prometheus/2.0.28/templates/exporters/core-dns/service.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/core-dns/servicemonitor.yaml b/core/prometheus/2.0.28/templates/exporters/core-dns/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/core-dns/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/exporters/core-dns/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-apiserver/servicemonitor.yaml b/core/prometheus/2.0.28/templates/exporters/kube-apiserver/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-apiserver/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-apiserver/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-controller-manager/endpoints.yaml b/core/prometheus/2.0.28/templates/exporters/kube-controller-manager/endpoints.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-controller-manager/endpoints.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-controller-manager/endpoints.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-controller-manager/service.yaml b/core/prometheus/2.0.28/templates/exporters/kube-controller-manager/service.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-controller-manager/service.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-controller-manager/service.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-controller-manager/servicemonitor.yaml b/core/prometheus/2.0.28/templates/exporters/kube-controller-manager/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-controller-manager/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-controller-manager/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-scheduler/endpoints.yaml b/core/prometheus/2.0.28/templates/exporters/kube-scheduler/endpoints.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-scheduler/endpoints.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-scheduler/endpoints.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-scheduler/service.yaml b/core/prometheus/2.0.28/templates/exporters/kube-scheduler/service.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-scheduler/service.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-scheduler/service.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kube-scheduler/servicemonitor.yaml b/core/prometheus/2.0.28/templates/exporters/kube-scheduler/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kube-scheduler/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/exporters/kube-scheduler/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/exporters/kubelet/servicemonitor.yaml b/core/prometheus/2.0.28/templates/exporters/kubelet/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/exporters/kubelet/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/exporters/kubelet/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/operator/_args.tpl b/core/prometheus/2.0.28/templates/operator/_args.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/operator/_args.tpl rename to core/prometheus/2.0.28/templates/operator/_args.tpl diff --git a/core/prometheus/2.0.26/templates/operator/configmap.yaml b/core/prometheus/2.0.28/templates/operator/configmap.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/operator/configmap.yaml rename to core/prometheus/2.0.28/templates/operator/configmap.yaml diff --git a/core/prometheus/2.0.26/templates/operator/servicemonitor.yaml b/core/prometheus/2.0.28/templates/operator/servicemonitor.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/operator/servicemonitor.yaml rename to core/prometheus/2.0.28/templates/operator/servicemonitor.yaml diff --git a/core/prometheus/2.0.26/templates/prometheus/_additionalPrometheusRules.tpl b/core/prometheus/2.0.28/templates/prometheus/_additionalPrometheusRules.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/_additionalPrometheusRules.tpl rename to core/prometheus/2.0.28/templates/prometheus/_additionalPrometheusRules.tpl diff --git a/core/prometheus/2.0.26/templates/prometheus/_additionalScrapeJobs.tpl b/core/prometheus/2.0.28/templates/prometheus/_additionalScrapeJobs.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/_additionalScrapeJobs.tpl rename to core/prometheus/2.0.28/templates/prometheus/_additionalScrapeJobs.tpl diff --git a/core/prometheus/2.0.26/templates/prometheus/_prometheus.tpl b/core/prometheus/2.0.28/templates/prometheus/_prometheus.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/_prometheus.tpl rename to core/prometheus/2.0.28/templates/prometheus/_prometheus.tpl diff --git a/core/prometheus/2.0.26/templates/prometheus/_servicemonitor.tpl b/core/prometheus/2.0.28/templates/prometheus/_servicemonitor.tpl similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/_servicemonitor.tpl rename to core/prometheus/2.0.28/templates/prometheus/_servicemonitor.tpl diff --git a/core/prometheus/2.0.26/templates/prometheus/clusterrole.yaml b/core/prometheus/2.0.28/templates/prometheus/clusterrole.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/clusterrole.yaml rename to core/prometheus/2.0.28/templates/prometheus/clusterrole.yaml diff --git a/core/prometheus/2.0.26/templates/prometheus/clusterrolebinding.yaml b/core/prometheus/2.0.28/templates/prometheus/clusterrolebinding.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/clusterrolebinding.yaml rename to core/prometheus/2.0.28/templates/prometheus/clusterrolebinding.yaml diff --git a/core/prometheus/2.0.26/templates/prometheus/serviceaccount.yaml b/core/prometheus/2.0.28/templates/prometheus/serviceaccount.yaml similarity index 100% rename from core/prometheus/2.0.26/templates/prometheus/serviceaccount.yaml rename to core/prometheus/2.0.28/templates/prometheus/serviceaccount.yaml diff --git a/core/prometheus/2.0.26/values.yaml b/core/prometheus/2.0.28/values.yaml similarity index 100% rename from core/prometheus/2.0.26/values.yaml rename to core/prometheus/2.0.28/values.yaml