suxess-it · renovate · Jan 1, 2025 · Jan 1, 2025 · Jan 6, 2025 · Jan 6, 2025
diff --git a/platform-apps/charts/image-list.md b/platform-apps/charts/image-list.md
@@ -45,7 +45,7 @@
 * registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
 ## k8s-monitoring
 * docker.io/grafana/alloy:v1.5.1
-* ghcr.io/grafana/k8s-monitoring-test:1.6.13
+* ghcr.io/grafana/k8s-monitoring-test:1.6.16
 * ghcr.io/jimmidyson/configmap-reload:v0.12.0
 * quay.io/prometheus/node-exporter:v1.8.2
 * registry.k8s.io/kube-state-metrics/kube-state-metrics:v2.14.0

diff --git a/platform-apps/charts/k8s-monitoring/Chart.lock b/platform-apps/charts/k8s-monitoring/Chart.lock
@@ -1,6 +1,6 @@
 dependencies:
 - name: k8s-monitoring
   repository: https://grafana.github.io/helm-charts
-  version: 1.6.13
-digest: sha256:ea3f9bf0d653467114d07d94d1901bbed161861dd7ad2e4f13237e07402b35f8
-generated: "2024-12-04T18:14:08.844104711Z"
+  version: 1.6.16
+digest: sha256:9a59297239e164cc22ac44e9ec7efdd7af5dbc24c93893e4df9d7d33c2ca73ca
+generated: "2025-01-01T13:55:51.878308647Z"
diff --git a/platform-apps/charts/k8s-monitoring/Chart.yaml b/platform-apps/charts/k8s-monitoring/Chart.yaml
@@ -26,5 +26,5 @@ appVersion: "1.0.0"
 dependencies:
   - name: k8s-monitoring
     alias: k8s-monitoring
-    version: 1.6.13
+    version: 1.6.16
     repository: https://grafana.github.io/helm-charts
diff --git a/trivy-reports/report-argocd_argocd_v2.13.2.md b/trivy-reports/report-argocd_argocd_v2.13.2.md
@@ -3,7 +3,7 @@
 <h4>No Vulnerabilities found</h4>
 <h4>No Misconfigurations found</h4>
 <h3>Target <code>usr/local/bin/argocd</code></h3>
-<h4>Vulnerabilities (3)</h4>
+<h4>Vulnerabilities (4)</h4>
 <table>
     <tr>
         <th>Package</th>
@@ -12,6 +12,13 @@
         <th>Installed Version</th>
         <th>Fixed Version</th>
     </tr>
+    <tr>
+        <td><code>github.com/go-git/go-git/v5</code></td>
+        <td>CVE-2025-21613</td>
+        <td>CRITICAL</td>
+        <td>v5.12.0</td>
+        <td>5.13.0</td>
+    </tr>
     <tr>
         <td><code>github.com/go-git/go-git/v5</code></td>
         <td>CVE-2025-21614</td>

diff --git a/trivy-reports/report-backstage_sx-backstage_v1.32.5.md b/trivy-reports/report-backstage_sx-backstage_v1.32.5.md
@@ -1,6 +1,6 @@
 
 <h3>Target <code>ghcr.io/suxess-it/sx-backstage:v1.32.5 (debian 12.7)</code></h3>
-<h4>Vulnerabilities (114)</h4>
+<h4>Vulnerabilities (113)</h4>
 <table>
     <tr>
         <th>Package</th>
@@ -338,13 +338,6 @@
         <td>6.1.112-1</td>
         <td>6.1.115-1</td>
     </tr>
-    <tr>
-        <td><code>linux-libc-dev</code></td>
-        <td>CVE-2024-49967</td>
-        <td>HIGH</td>
-        <td>6.1.112-1</td>
-        <td>6.1.115-1</td>
-    </tr>
     <tr>
         <td><code>linux-libc-dev</code></td>
         <td>CVE-2024-49969</td>

diff --git a/trivy-reports/report-k8s-monitoring_alloy_v1.5.1.md b/trivy-reports/report-k8s-monitoring_alloy_v1.5.1.md
@@ -3,7 +3,7 @@
 <h4>No Vulnerabilities found</h4>
 <h4>No Misconfigurations found</h4>
 <h3>Target <code>usr/bin/alloy</code></h3>
-<h4>Vulnerabilities (3)</h4>
+<h4>Vulnerabilities (4)</h4>
 <table>
     <tr>
         <th>Package</th>
@@ -12,6 +12,13 @@
         <th>Installed Version</th>
         <th>Fixed Version</th>
     </tr>
+    <tr>
+        <td><code>github.com/go-git/go-git/v5</code></td>
+        <td>CVE-2025-21613</td>
+        <td>CRITICAL</td>
+        <td>v5.11.0</td>
+        <td>5.13.0</td>
+    </tr>
     <tr>
         <td><code>github.com/go-git/go-git/v5</code></td>
         <td>CVE-2025-21614</td>

diff --git a/...-monitoring_k8s-monitoring-test_1.6.13.md → ...-monitoring_k8s-monitoring-test_1.6.16.md b/...-monitoring_k8s-monitoring-test_1.6.13.md → ...-monitoring_k8s-monitoring-test_1.6.16.md
diff --git a/trivy-reports/report-kargo_kargo_v1.1.2.md b/trivy-reports/report-kargo_kargo_v1.1.2.md
@@ -32,7 +32,7 @@
 </table>
 <h4>No Misconfigurations found</h4>
 <h3>Target <code>usr/local/bin/kargo</code></h3>
-<h4>Vulnerabilities (3)</h4>
+<h4>Vulnerabilities (4)</h4>
 <table>
     <tr>
         <th>Package</th>
@@ -41,6 +41,13 @@
         <th>Installed Version</th>
         <th>Fixed Version</th>
     </tr>
+    <tr>
+        <td><code>github.com/go-git/go-git/v5</code></td>
+        <td>CVE-2025-21613</td>
+        <td>CRITICAL</td>
+        <td>v5.12.0</td>
+        <td>5.13.0</td>
+    </tr>
     <tr>
         <td><code>github.com/go-git/go-git/v5</code></td>
         <td>CVE-2025-21614</td>

diff --git a/trivy-reports/report-kyverno_kyverno-cli_v1.13.2.md b/trivy-reports/report-kyverno_kyverno-cli_v1.13.2.md
@@ -3,7 +3,7 @@
 <h4>No Vulnerabilities found</h4>
 <h4>No Misconfigurations found</h4>
 <h3>Target <code>ko-app/kubectl-kyverno</code></h3>
-<h4>Vulnerabilities (3)</h4>
+<h4>Vulnerabilities (4)</h4>
 <table>
     <tr>
         <th>Package</th>
@@ -12,6 +12,13 @@
         <th>Installed Version</th>
         <th>Fixed Version</th>
     </tr>
+    <tr>
+        <td><code>github.com/go-git/go-git/v5</code></td>
+        <td>CVE-2025-21613</td>
+        <td>CRITICAL</td>
+        <td>v5.12.0</td>
+        <td>5.13.0</td>
+    </tr>
     <tr>
         <td><code>github.com/go-git/go-git/v5</code></td>
         <td>CVE-2025-21614</td>

diff --git a/trivy-reports/report-trivy_trivy-operator_0.23.0.md b/trivy-reports/report-trivy_trivy-operator_0.23.0.md
@@ -3,7 +3,7 @@
 <h4>No Vulnerabilities found</h4>
 <h4>No Misconfigurations found</h4>
 <h3>Target <code>usr/local/bin/trivy-operator</code></h3>
-<h4>Vulnerabilities (3)</h4>
+<h4>Vulnerabilities (4)</h4>
 <table>
     <tr>
         <th>Package</th>
@@ -12,6 +12,13 @@
         <th>Installed Version</th>
         <th>Fixed Version</th>
     </tr>
+    <tr>
+        <td><code>github.com/go-git/go-git/v5</code></td>
+        <td>CVE-2025-21613</td>
+        <td>CRITICAL</td>
+        <td>v5.12.0</td>
+        <td>5.13.0</td>
+    </tr>
     <tr>
         <td><code>github.com/go-git/go-git/v5</code></td>
         <td>CVE-2025-21614</td>