Status
Impact
Upstream has pinned these dependency versions and will require functional changes from upstream maintainers to upgrade. The k8s.io/apimachinery dependency is intentionally pinned to a 2019 commit via replace directives to maintain compatibility with Kubeflow's custom role system.
Status
Impact
Govulncheck found vulnerable symbols in Go binaries at the following locations: in kubeflow-access-management-fips-1.10.0-r2.apk, at usr/bin/access-management, usr/bin/access-management.
Status