flux-source-controller-2.0
Chainguard
9.8
CVSS V3
Status
Impact
Upstream requires an old and specific version of go-git v5.7.1 and has an indirect dependency to a go-git fork of fluxcd in github.com/fluxcd/go-git/v5@v5.0.0 which requires multiple changes to those fluxcd dependencies in order to fix it.