From 12fbe509adab143ce66b60854d5f828873302dd9 Mon Sep 17 00:00:00 2001
From: CI <ci@argoproj.com>
Date: Sun, 11 Dec 2022 00:25:21 +0000
Subject: [PATCH] [Bot] Update Snyk reports
Signed-off-by: CI <ci@argoproj.com>
---
docs/snyk/index.md | 36 +-
docs/snyk/master/argocd-iac-install.html | 84 +-
.../master/argocd-iac-namespace-install.html | 36 +-
docs/snyk/master/argocd-test.html | 2498 ++++++++++--
.../master/ghcr.io_dexidp_dex_v2.35.3.html | 2 +-
docs/snyk/master/haproxy_2.6.2-alpine.html | 2 +-
.../quay.io_argoproj_argocd_latest.html | 319 +-
docs/snyk/master/redis_7.0.5-alpine.html | 4 +-
docs/snyk/v2.3.11/argocd-iac-install.html | 32 +-
.../v2.3.11/argocd-iac-namespace-install.html | 32 +-
docs/snyk/v2.3.11/argocd-test.html | 2180 ++++++++++-
...ghcr.io_dexidp_dex_v2.35.3-distroless.html | 2 +-
docs/snyk/v2.3.11/haproxy_2.0.29-alpine.html | 2 +-
...argoproj_argocd-applicationset_v0.4.1.html | 11 +-
.../quay.io_argoproj_argocd_v2.3.11.html | 332 +-
docs/snyk/v2.3.11/redis_6.2.7-alpine.html | 4 +-
docs/snyk/v2.4.17/argocd-iac-install.html | 32 +-
.../v2.4.17/argocd-iac-namespace-install.html | 32 +-
docs/snyk/v2.4.17/argocd-test.html | 2478 +++++++++++-
...ghcr.io_dexidp_dex_v2.35.3-distroless.html | 2 +-
docs/snyk/v2.4.17/haproxy_2.0.29-alpine.html | 2 +-
.../quay.io_argoproj_argocd_v2.4.17.html | 332 +-
docs/snyk/v2.4.17/redis_7.0.4-alpine.html | 2 +-
docs/snyk/v2.5.2/argocd-test.html | 1000 -----
.../argocd-iac-install.html | 32 +-
.../argocd-iac-namespace-install.html | 32 +-
docs/snyk/v2.5.4/argocd-test.html | 3396 +++++++++++++++++
.../ghcr.io_dexidp_dex_v2.35.3.html} | 10 +-
.../haproxy_2.6.2-alpine.html | 2 +-
.../quay.io_argoproj_argocd_v2.5.4.html} | 581 +--
.../redis_7.0.5-alpine.html | 4 +-
31 files changed, 11179 insertions(+), 2334 deletions(-)
delete mode 100644 docs/snyk/v2.5.2/argocd-test.html
rename docs/snyk/{v2.5.2 => v2.5.4}/argocd-iac-install.html (99%)
rename docs/snyk/{v2.5.2 => v2.5.4}/argocd-iac-namespace-install.html (99%)
create mode 100644 docs/snyk/v2.5.4/argocd-test.html
rename docs/snyk/{v2.5.2/ghcr.io_dexidp_dex_v2.35.3-distroless.html => v2.5.4/ghcr.io_dexidp_dex_v2.35.3.html} (97%)
rename docs/snyk/{v2.5.2 => v2.5.4}/haproxy_2.6.2-alpine.html (99%)
rename docs/snyk/{v2.5.2/quay.io_argoproj_argocd_v2.5.2.html => v2.5.4/quay.io_argoproj_argocd_v2.5.4.html} (87%)
rename docs/snyk/{v2.5.2 => v2.5.4}/redis_7.0.5-alpine.html (99%)
diff --git a/docs/snyk/index.md b/docs/snyk/index.md
index 916d948f27c85..f6bd6dedc6df8 100644
--- a/docs/snyk/index.md
+++ b/docs/snyk/index.md
@@ -13,37 +13,37 @@ recent minor releases.
| | Critical | High | Medium | Low |
|---:|:--------:|:----:|:------:|:---:|
-| [go.mod](master/argocd-test.html) | 0 | 0 | 2 | 0 |
-| [ui/yarn.lock](master/argocd-test.html) | 0 | 0 | 3 | 0 |
+| [go.mod](master/argocd-test.html) | 0 | 1 | 0 | 0 |
+| [ui/yarn.lock](master/argocd-test.html) | 0 | 1 | 3 | 0 |
| [dex:v2.35.3](master/ghcr.io_dexidp_dex_v2.35.3.html) | 0 | 0 | 0 | 0 |
| [haproxy:2.6.2-alpine](master/haproxy_2.6.2-alpine.html) | 0 | 0 | 0 | 0 |
-| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 3 | 12 |
+| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 1 | 12 |
| [redis:7.0.5-alpine](master/redis_7.0.5-alpine.html) | 0 | 0 | 0 | 0 |
| [install.yaml](master/argocd-iac-install.html) | - | - | - | - |
| [namespace-install.yaml](master/argocd-iac-namespace-install.html) | - | - | - | - |
-### v2.5.2
+### v2.5.4
| | Critical | High | Medium | Low |
|---:|:--------:|:----:|:------:|:---:|
-| [go.mod](v2.5.2/argocd-test.html) | 0 | 0 | 2 | 0 |
-| [ui/yarn.lock](v2.5.2/argocd-test.html) | 0 | 0 | 3 | 0 |
-| [dex:v2.35.3-distroless](v2.5.2/ghcr.io_dexidp_dex_v2.35.3-distroless.html) | 0 | 0 | 0 | 0 |
-| [haproxy:2.6.2-alpine](v2.5.2/haproxy_2.6.2-alpine.html) | 0 | 0 | 0 | 0 |
-| [argocd:v2.5.2](v2.5.2/quay.io_argoproj_argocd_v2.5.2.html) | 0 | 0 | 4 | 12 |
-| [redis:7.0.5-alpine](v2.5.2/redis_7.0.5-alpine.html) | 0 | 0 | 0 | 0 |
-| [install.yaml](v2.5.2/argocd-iac-install.html) | - | - | - | - |
-| [namespace-install.yaml](v2.5.2/argocd-iac-namespace-install.html) | - | - | - | - |
+| [go.mod](v2.5.4/argocd-test.html) | 0 | 1 | 3 | 0 |
+| [ui/yarn.lock](v2.5.4/argocd-test.html) | 0 | 1 | 3 | 0 |
+| [dex:v2.35.3](v2.5.4/ghcr.io_dexidp_dex_v2.35.3.html) | 0 | 0 | 0 | 0 |
+| [haproxy:2.6.2-alpine](v2.5.4/haproxy_2.6.2-alpine.html) | 0 | 0 | 0 | 0 |
+| [argocd:v2.5.4](v2.5.4/quay.io_argoproj_argocd_v2.5.4.html) | 0 | 0 | 1 | 12 |
+| [redis:7.0.5-alpine](v2.5.4/redis_7.0.5-alpine.html) | 0 | 0 | 0 | 0 |
+| [install.yaml](v2.5.4/argocd-iac-install.html) | - | - | - | - |
+| [namespace-install.yaml](v2.5.4/argocd-iac-namespace-install.html) | - | - | - | - |
### v2.4.17
| | Critical | High | Medium | Low |
|---:|:--------:|:----:|:------:|:---:|
-| [go.mod](v2.4.17/argocd-test.html) | 0 | 0 | 3 | 0 |
-| [ui/yarn.lock](v2.4.17/argocd-test.html) | 0 | 0 | 3 | 0 |
+| [go.mod](v2.4.17/argocd-test.html) | 0 | 1 | 4 | 0 |
+| [ui/yarn.lock](v2.4.17/argocd-test.html) | 0 | 2 | 3 | 0 |
| [dex:v2.35.3-distroless](v2.4.17/ghcr.io_dexidp_dex_v2.35.3-distroless.html) | 0 | 0 | 0 | 0 |
| [haproxy:2.0.29-alpine](v2.4.17/haproxy_2.0.29-alpine.html) | 0 | 0 | 0 | 0 |
-| [argocd:v2.4.17](v2.4.17/quay.io_argoproj_argocd_v2.4.17.html) | 0 | 0 | 4 | 12 |
+| [argocd:v2.4.17](v2.4.17/quay.io_argoproj_argocd_v2.4.17.html) | 0 | 0 | 5 | 13 |
| [redis:7.0.4-alpine](v2.4.17/redis_7.0.4-alpine.html) | 0 | 0 | 0 | 0 |
| [install.yaml](v2.4.17/argocd-iac-install.html) | - | - | - | - |
| [namespace-install.yaml](v2.4.17/argocd-iac-namespace-install.html) | - | - | - | - |
@@ -52,12 +52,12 @@ recent minor releases.
| | Critical | High | Medium | Low |
|---:|:--------:|:----:|:------:|:---:|
-| [go.mod](v2.3.11/argocd-test.html) | 0 | 0 | 3 | 0 |
-| [ui/yarn.lock](v2.3.11/argocd-test.html) | 0 | 1 | 5 | 0 |
+| [go.mod](v2.3.11/argocd-test.html) | 0 | 1 | 4 | 0 |
+| [ui/yarn.lock](v2.3.11/argocd-test.html) | 0 | 3 | 5 | 0 |
| [dex:v2.35.3-distroless](v2.3.11/ghcr.io_dexidp_dex_v2.35.3-distroless.html) | 0 | 0 | 0 | 0 |
| [haproxy:2.0.29-alpine](v2.3.11/haproxy_2.0.29-alpine.html) | 0 | 0 | 0 | 0 |
| [argocd-applicationset:v0.4.1](v2.3.11/quay.io_argoproj_argocd-applicationset_v0.4.1.html) | 0 | 4 | 38 | 29 |
-| [argocd:v2.3.11](v2.3.11/quay.io_argoproj_argocd_v2.3.11.html) | 0 | 0 | 4 | 12 |
+| [argocd:v2.3.11](v2.3.11/quay.io_argoproj_argocd_v2.3.11.html) | 0 | 0 | 5 | 13 |
| [redis:6.2.7-alpine](v2.3.11/redis_6.2.7-alpine.html) | 0 | 0 | 0 | 0 |
| [install.yaml](v2.3.11/argocd-iac-install.html) | - | - | - | - |
| [namespace-install.yaml](v2.3.11/argocd-iac-namespace-install.html) | - | - | - | - |
diff --git a/docs/snyk/master/argocd-iac-install.html b/docs/snyk/master/argocd-iac-install.html
index 3e0e632af9b68..fd686c6d21c1e 100644
--- a/docs/snyk/master/argocd-iac-install.html
+++ b/docs/snyk/master/argocd-iac-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:17:45 am</p>
+ <p class="timestamp">December 11th 2022, 12:17:38 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -500,14 +500,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 10061
+ </li>
</ul>
<hr/>
@@ -545,14 +546,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[4]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 10138
+ </li>
</ul>
<hr/>
@@ -590,14 +592,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 12]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 10166
+ </li>
</ul>
<hr/>
@@ -635,14 +638,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 10210
+ </li>
</ul>
<hr/>
@@ -680,14 +684,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 10192
+ </li>
</ul>
<hr/>
@@ -725,14 +730,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 14]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 10226
+ </li>
</ul>
<hr/>
@@ -783,7 +789,7 @@ <h2 class="card__title">Container could be running with outdated image</h2>
</li>
<li class="card__meta__item">
- Line number: 10725
+ Line number: 11224
</li>
</ul>
@@ -841,7 +847,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10194
+ Line number: 10693
</li>
</ul>
@@ -899,7 +905,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10361
+ Line number: 10860
</li>
</ul>
@@ -957,7 +963,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10327
+ Line number: 10826
</li>
</ul>
@@ -1015,7 +1021,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10417
+ Line number: 10916
</li>
</ul>
@@ -1073,7 +1079,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10491
+ Line number: 10990
</li>
</ul>
@@ -1131,7 +1137,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10725
+ Line number: 11224
</li>
</ul>
@@ -1189,7 +1195,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10547
+ Line number: 11046
</li>
</ul>
@@ -1247,7 +1253,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10810
+ Line number: 11309
</li>
</ul>
@@ -1305,7 +1311,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 11108
+ Line number: 11613
</li>
</ul>
@@ -1357,7 +1363,7 @@ <h2 class="card__title">Container is running with multiple open ports</h2>
</li>
<li class="card__meta__item">
- Line number: 10341
+ Line number: 10840
</li>
</ul>
@@ -1413,7 +1419,7 @@ <h2 class="card__title">Container is running with writable root filesystem</h2>
</li>
<li class="card__meta__item">
- Line number: 10501
+ Line number: 11000
</li>
</ul>
@@ -1465,7 +1471,7 @@ <h2 class="card__title">Container is running without liveness probe</h2>
</li>
<li class="card__meta__item">
- Line number: 10194
+ Line number: 10693
</li>
</ul>
@@ -1517,7 +1523,7 @@ <h2 class="card__title">Container is running without liveness probe</h2>
</li>
<li class="card__meta__item">
- Line number: 10327
+ Line number: 10826
</li>
</ul>
@@ -1569,7 +1575,7 @@ <h2 class="card__title">Container is running without liveness probe</h2>
</li>
<li class="card__meta__item">
- Line number: 10361
+ Line number: 10860
</li>
</ul>
@@ -1621,7 +1627,7 @@ <h2 class="card__title">Container is running without liveness probe</h2>
</li>
<li class="card__meta__item">
- Line number: 10491
+ Line number: 10990
</li>
</ul>
@@ -1673,7 +1679,7 @@ <h2 class="card__title">Container is running without liveness probe</h2>
</li>
<li class="card__meta__item">
- Line number: 10725
+ Line number: 11224
</li>
</ul>
@@ -1731,7 +1737,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10194
+ Line number: 10693
</li>
</ul>
@@ -1789,7 +1795,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10327
+ Line number: 10826
</li>
</ul>
@@ -1847,7 +1853,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10361
+ Line number: 10860
</li>
</ul>
@@ -1905,7 +1911,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10417
+ Line number: 10916
</li>
</ul>
@@ -1963,7 +1969,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10491
+ Line number: 10990
</li>
</ul>
@@ -2021,7 +2027,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10725
+ Line number: 11224
</li>
</ul>
@@ -2079,7 +2085,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10547
+ Line number: 11046
</li>
</ul>
@@ -2137,7 +2143,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 10810
+ Line number: 11309
</li>
</ul>
@@ -2195,7 +2201,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 11108
+ Line number: 11613
</li>
</ul>
diff --git a/docs/snyk/master/argocd-iac-namespace-install.html b/docs/snyk/master/argocd-iac-namespace-install.html
index 8e3f1d3f9495d..f90995dd60322 100644
--- a/docs/snyk/master/argocd-iac-namespace-install.html
+++ b/docs/snyk/master/argocd-iac-namespace-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:17:56 am</p>
+ <p class="timestamp">December 11th 2022, 12:17:49 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -500,14 +500,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 7]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 77
+ </li>
</ul>
<hr/>
@@ -545,14 +546,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 8]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[4]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 154
+ </li>
</ul>
<hr/>
@@ -590,14 +592,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 9]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 182
+ </li>
</ul>
<hr/>
@@ -635,14 +638,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 226
+ </li>
</ul>
<hr/>
@@ -680,14 +684,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 208
+ </li>
</ul>
<hr/>
@@ -725,14 +730,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 242
+ </li>
</ul>
<hr/>
@@ -1305,7 +1311,7 @@ <h2 class="card__title">Container has no CPU limit</h2>
</li>
<li class="card__meta__item">
- Line number: 1530
+ Line number: 1536
</li>
</ul>
@@ -2195,7 +2201,7 @@ <h2 class="card__title">Container is running without memory limit</h2>
</li>
<li class="card__meta__item">
- Line number: 1530
+ Line number: 1536
</li>
</ul>
diff --git a/docs/snyk/master/argocd-test.html b/docs/snyk/master/argocd-test.html
index 282bceea72a39..2ff6c2ec69b3d 100644
--- a/docs/snyk/master/argocd-test.html
+++ b/docs/snyk/master/argocd-test.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="5 known vulnerabilities found in 9 vulnerable dependency paths.">
+ <meta name="description" content="5 known vulnerabilities found in 121 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:15:47 am</p>
+ <p class="timestamp">December 11th 2022, 12:15:43 am</p>
</div>
<div class="source-panel">
<span>Scanned the following paths:</span>
@@ -467,8 +467,8 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="meta-counts">
<div class="meta-count"><span>5</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>9 vulnerable dependency paths</span></div>
- <div class="meta-count"><span>1721</span> <span>dependencies</span></div>
+ <div class="meta-count"><span>121 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>1739</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
</header><!-- .project__header -->
@@ -476,6 +476,2286 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Prototype Poisoning</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ qs
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.6.0
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-path@4.0.4
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.10.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ superagent@7.1.6
+ <span class="list-paths__item__arrow">›</span>
+ formidable@2.0.1
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.9.3
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.com/package/qs">qs</a> is a querystring parser that supports nesting and arrays, with a depth limit.</p>
+ <p>Affected versions of this package are vulnerable to Prototype Poisoning which allows attackers to cause a Node process to hang, processing an Array object whose prototype has been replaced by one with an excessive length value.</p>
+ <p><strong>Note:</strong> In many typical Express use cases, an unauthenticated remote attacker can place the attack payload in the query string of the URL that is used to visit the application, such as <code>a[__proto__]=b&a[__proto__]&a[length]=100000000</code>.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>qs</code> to version 6.2.4, 6.3.3, 6.4.1, 6.5.3, 6.6.1, 6.7.3, 6.8.3, 6.9.7, 6.10.3 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/ljharb/qs/pull/428">GitHub PR</a></li>
+ <li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2150323">RedHat Bugzilla Bug</a></li>
+ <li><a href="https://github.com/n8tz/CVE-2022-24999">Researcher Advisory</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-QS-3153490">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Denial of Service (DoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ golang.org/x/net/http2
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, k8s.io/client-go/rest@0.24.2 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/soheilhy/cmux@0.1.5
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#27bd8ce31415
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/record@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#490d98afd1d6
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#490d98afd1d6
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/auth@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/retry@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-prometheus@1.2.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@0.31.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc@1.11.1
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#490d98afd1d6
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/equality@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#27bd8ce31415
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/rbac/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection/grpc_reflection_v1alpha@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/testing/controlplane@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/validation@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/validation@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/portforward@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/managedfields@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/resource@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/testing@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/record@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/reference@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/pkg/apis/clientauthentication/v1beta1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/pkg/apis/clientauthentication@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/scheme@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/util/retry@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/resource@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/podutils@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus/ctxlogrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.51.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/cache@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#490d98afd1d6
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#490d98afd1d6
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/manager@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/internal/metrics@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/metrics@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/handler@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/cache@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/diff@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/conversion@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#490d98afd1d6
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube/scheme@#e284fd71cb96
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/storage/install@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/storage/v1beta1@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/storage@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/core@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source/internal@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/predicate@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/handler@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source/internal@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/predicate@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@0.1.0
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/golang.org/x/net@v0.0.0-20211209100829-84cba5454caf/http2#section-readme">golang.org/x/net/http2</a> is a work-in-progress HTTP/2 implementation for Go.</p>
+ <p>Affected versions of this package are vulnerable to Denial of Service (DoS) due to improper checks and limitations for the number of entries in the cache, which can allow an attacker to consume unbounded amounts of memory by sending a small number of very large keys.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>golang.org/x/net/http2</code> to version 0.4.0 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://cs.opensource.google/go/x/net/+/1e63c2f08a10a150fa02c50ece89b340ae64efe4">Fix Commit</a></li>
+ <li><a href="https://go-review.googlesource.com/c/net/+/455635">Fix Commit</a></li>
+ <li><a href="https://github.com/golang/net/commit/1e63c2f08a10a150fa02c50ece89b340ae64efe4">GitHub Commit</a></li>
+ <li><a href="https://github.com/golang/go/issues/56350">GitHub Issue</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOLANGORGXNETHTTP2-3160322">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
<h2 class="card__title">Server-side Request Forgery (SSRF)</h2>
<div class="card__section">
@@ -782,216 +3062,6 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Improper Input Validation</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: golang
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- go.mongodb.org/mongo-driver/bson/bsonrw
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- github.com/argoproj/argo-cd/v2@0.0.0, github.com/go-openapi/runtime/middleware@0.19.4 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/runtime/middleware@0.19.4
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/validate@0.19.5
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/strfmt@0.19.3
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson@1.1.2
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson/bsonrw@1.1.2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/runtime/middleware@0.19.4
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/validate@0.19.5
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/strfmt@0.19.3
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson@1.1.2
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson/bsoncodec@1.1.2
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson/bsonrw@1.1.2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://github.com/mongodb/mongo-go-driver">go.mongodb.org/mongo-driver/bson/bsonrw</a> is a The MongoDB supported driver for Go.</p>
- <p>Affected versions of this package are vulnerable to Improper Input Validation. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshalling Go objects into BSON. A malicious user could use a Go object with specific string to potentially inject additional fields into marshalled documents.</p>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>go.mongodb.org/mongo-driver/bson/bsonrw</code> to version 1.5.1 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/mongodb/mongo-go-driver/commit/3a89e6cde18d6ac5d38f39b54eaa8d4e321fd118">GitHub Commit</a></li>
- <li><a href="https://jira.mongodb.org/browse/GODRIVER-1923">GitHub Issue</a></li>
- <li><a href="https://github.com/mongodb/mongo-go-driver/releases/tag/v1.5.1">GitHub Release</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOMONGODBORGMONGODRIVERBSONBSONRW-1303393">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Insecure Randomness</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: golang
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- github.com/Masterminds/goutils
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- github.com/argoproj/argo-cd/v2@0.0.0, github.com/Masterminds/sprig@2.22.0 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/cmd@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/controller@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://pkg.go.dev/github.com/masterminds/goutils">github.com/masterminds/goutils</a> is a provides users with utility functions to manipulate strings in various ways.</p>
- <p>Affected versions of this package are vulnerable to Insecure Randomness via the <code>RandomAlphaNumeric(int)</code> and <code>CryptoRandomAlphaNumeric(int)</code> functions. Small values of <code>int</code> in the functions above will return a smaller subset of results than they should. For example, <code>RandomAlphaNumeric(1)</code> would always return a digit in the 0-9 range, while <code>RandomAlphaNumeric(4)</code> return around ~7 million of the ~13M possible permutations.</p>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>github.com/masterminds/goutils</code> to version 1.1.1 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/Masterminds/goutils/commit/f1923532a168b8203bfe956d8cd3b17ebece5982">GitHub Commit</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMASTERMINDSGOUTILS-1296313">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/master/ghcr.io_dexidp_dex_v2.35.3.html b/docs/snyk/master/ghcr.io_dexidp_dex_v2.35.3.html
index 974273e70c53c..12e8e9dc2fb96 100644
--- a/docs/snyk/master/ghcr.io_dexidp_dex_v2.35.3.html
+++ b/docs/snyk/master/ghcr.io_dexidp_dex_v2.35.3.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:15:59 am</p>
+ <p class="timestamp">December 11th 2022, 12:15:52 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/master/haproxy_2.6.2-alpine.html b/docs/snyk/master/haproxy_2.6.2-alpine.html
index c0e541a739992..d725bd1b474d1 100644
--- a/docs/snyk/master/haproxy_2.6.2-alpine.html
+++ b/docs/snyk/master/haproxy_2.6.2-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:16:05 am</p>
+ <p class="timestamp">December 11th 2022, 12:15:57 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/master/quay.io_argoproj_argocd_latest.html b/docs/snyk/master/quay.io_argoproj_argocd_latest.html
index 0d989f03ee144..f293ce32aed42 100644
--- a/docs/snyk/master/quay.io_argoproj_argocd_latest.html
+++ b/docs/snyk/master/quay.io_argoproj_argocd_latest.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="15 known vulnerabilities found in 86 vulnerable dependency paths.">
+ <meta name="description" content="13 known vulnerabilities found in 81 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:16:28 am</p>
+ <p class="timestamp">December 11th 2022, 12:16:21 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -466,8 +466,8 @@ <h1 class="project__header__title">Snyk test report</h1>
</div>
<div class="meta-counts">
- <div class="meta-count"><span>15</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>86 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>13</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>81 vulnerable dependency paths</span></div>
<div class="meta-count"><span>162</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
@@ -485,79 +485,6 @@ <h1 class="project__header__title">Snyk test report</h1>
</section>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-42800</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- zlib/zlib1g
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- docker-image|quay.io/argoproj/argocd@latest, meta-common-packages@meta and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@latest
- <span class="list-paths__item__arrow">›</span>
- meta-common-packages@meta
- <span class="list-paths__item__arrow">›</span>
- zlib/zlib1g@1:1.2.11.dfsg-2ubuntu9.2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>zlib</code> package.</em></p>
- <p>This issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A user may be able to cause unexpected app termination or arbitrary code execution.</p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>zlib</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-42800">ADVISORY</a></li>
- <li><a href="https://support.apple.com/en-us/HT213488">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213494">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213493">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213490">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213491">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213489">MISC</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-ZLIB-3098559">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
<h2 class="card__title">Off-by-one Error</h2>
<div class="card__section">
@@ -719,6 +646,7 @@ <h2 id="references">References</h2>
<li><a href="https://github.com/systemd/systemd/commit/9102c625a673a3246d7e73d8737f3494446bad4e">MISC</a></li>
<li><a href="https://github.com/systemd/systemd/pull/23933">MISC</a></li>
<li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2139327">MISC</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVBQC2VLSDVQAPJTEMTREXDL4HYLXG2P/">FEDORA</a></li>
</ul>
<hr/>
@@ -727,171 +655,6 @@ <h2 id="references">References</h2>
<p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-SYSTEMD-3098846">More about this vulnerability</a></p>
</div>
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-3715</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- bash
- </li>
-
- <li class="card__meta__item">Introduced through:
-
- docker-image|quay.io/argoproj/argocd@latest and bash@5.1-6ubuntu1
-
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@latest
- <span class="list-paths__item__arrow">›</span>
- bash@5.1-6ubuntu1
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
- <h2 class="card__title">Time-of-check Time-of-use (TOCTOU)</h2>
- <div class="card__section">
-
- <div class="label label--low">
- <span class="label__text">low severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- shadow/passwd
- </li>
-
- <li class="card__meta__item">Introduced through:
-
- docker-image|quay.io/argoproj/argocd@latest and shadow/passwd@1:4.8.1-2ubuntu2
-
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@latest
- <span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@latest
- <span class="list-paths__item__arrow">›</span>
- adduser@3.118ubuntu5
- <span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@latest
- <span class="list-paths__item__arrow">›</span>
- openssh/openssh-client@1:8.9p1-3
- <span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@latest
- <span class="list-paths__item__arrow">›</span>
- shadow/login@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>shadow</code> package.</em></p>
- <p>shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees</p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>shadow</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2013-4235">ADVISORY</a></li>
- <li><a href="https://security-tracker.debian.org/tracker/CVE-2013-4235">Debian Security Tracker</a></li>
- <li><a href="https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E">MLIST</a></li>
- <li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235">RedHat Bugzilla Bug</a></li>
- <li><a href="https://access.redhat.com/security/cve/cve-2013-4235">RedHat CVE Database</a></li>
- <li><a href="https://security.gentoo.org/glsa/202210-26">GENTOO</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-SHADOW-2801886">More about this vulnerability</a></p>
- </div>
-
</div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
<h2 class="card__title">Uncontrolled Recursion</h2>
@@ -1569,7 +1332,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1590,7 +1353,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1622,7 +1385,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1691,7 +1454,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -2347,6 +2110,70 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
+ <h2 class="card__title">CVE-2022-3715</h2>
+ <div class="card__section">
+
+ <div class="label label--low">
+ <span class="label__text">low severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ bash
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+ docker-image|quay.io/argoproj/argocd@latest and bash@5.1-6ubuntu1
+
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@latest
+ <span class="list-paths__item__arrow">›</span>
+ bash@5.1-6ubuntu1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
+ <h2 id="remediation">Remediation</h2>
+ <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/master/redis_7.0.5-alpine.html b/docs/snyk/master/redis_7.0.5-alpine.html
index 7cc0ced083e09..7cf84960c9178 100644
--- a/docs/snyk/master/redis_7.0.5-alpine.html
+++ b/docs/snyk/master/redis_7.0.5-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:16:34 am</p>
+ <p class="timestamp">December 11th 2022, 12:16:28 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -468,7 +468,7 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="meta-counts">
<div class="meta-count"><span>0</span> <span>known vulnerabilities</span></div>
<div class="meta-count"><span>0 vulnerable dependency paths</span></div>
- <div class="meta-count"><span>17</span> <span>dependencies</span></div>
+ <div class="meta-count"><span>18</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
</header><!-- .project__header -->
diff --git a/docs/snyk/v2.3.11/argocd-iac-install.html b/docs/snyk/v2.3.11/argocd-iac-install.html
index 652a7facdcb77..4067e8eccc0fc 100644
--- a/docs/snyk/v2.3.11/argocd-iac-install.html
+++ b/docs/snyk/v2.3.11/argocd-iac-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:24:38 am</p>
+ <p class="timestamp">December 11th 2022, 12:24:40 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -1296,14 +1296,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 9]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9184
+ </li>
</ul>
<hr/>
@@ -1341,14 +1342,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9256
+ </li>
</ul>
<hr/>
@@ -1386,14 +1388,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9284
+ </li>
</ul>
<hr/>
@@ -1431,14 +1434,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 12]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9328
+ </li>
</ul>
<hr/>
@@ -1476,14 +1480,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 12]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9310
+ </li>
</ul>
<hr/>
@@ -1521,14 +1526,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9344
+ </li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.3.11/argocd-iac-namespace-install.html b/docs/snyk/v2.3.11/argocd-iac-namespace-install.html
index e5bda109c35e4..a2de3838730a2 100644
--- a/docs/snyk/v2.3.11/argocd-iac-namespace-install.html
+++ b/docs/snyk/v2.3.11/argocd-iac-namespace-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:25:19 am</p>
+ <p class="timestamp">December 11th 2022, 12:25:20 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -1296,14 +1296,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 7]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 6565
+ </li>
</ul>
<hr/>
@@ -1341,14 +1342,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 8]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 6637
+ </li>
</ul>
<hr/>
@@ -1386,14 +1388,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 9]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 6665
+ </li>
</ul>
<hr/>
@@ -1431,14 +1434,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 6709
+ </li>
</ul>
<hr/>
@@ -1476,14 +1480,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 6691
+ </li>
</ul>
<hr/>
@@ -1521,14 +1526,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 6725
+ </li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.3.11/argocd-test.html b/docs/snyk/v2.3.11/argocd-test.html
index 7ecf031ffa43c..b4e5afffae90b 100644
--- a/docs/snyk/v2.3.11/argocd-test.html
+++ b/docs/snyk/v2.3.11/argocd-test.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="9 known vulnerabilities found in 16 vulnerable dependency paths.">
+ <meta name="description" content="13 known vulnerabilities found in 114 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:22:26 am</p>
+ <p class="timestamp">December 11th 2022, 12:22:35 am</p>
</div>
<div class="source-panel">
<span>Scanned the following paths:</span>
@@ -466,8 +466,8 @@ <h1 class="project__header__title">Snyk test report</h1>
</div>
<div class="meta-counts">
- <div class="meta-count"><span>9</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>16 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>13</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>114 vulnerable dependency paths</span></div>
<div class="meta-count"><span>1467</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
@@ -476,6 +476,105 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Prototype Poisoning</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ qs
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, superagent@3.8.3 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ superagent@3.8.3
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.10.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.1.2
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-path@4.0.3
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.10.1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.com/package/qs">qs</a> is a querystring parser that supports nesting and arrays, with a depth limit.</p>
+ <p>Affected versions of this package are vulnerable to Prototype Poisoning which allows attackers to cause a Node process to hang, processing an Array object whose prototype has been replaced by one with an excessive length value.</p>
+ <p><strong>Note:</strong> In many typical Express use cases, an unauthenticated remote attacker can place the attack payload in the query string of the URL that is used to visit the application, such as <code>a[__proto__]=b&a[__proto__]&a[length]=100000000</code>.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>qs</code> to version 6.2.4, 6.3.3, 6.4.1, 6.5.3, 6.6.1, 6.7.3, 6.8.3, 6.9.7, 6.10.3 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/ljharb/qs/pull/428">GitHub PR</a></li>
+ <li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2150323">RedHat Bugzilla Bug</a></li>
+ <li><a href="https://github.com/n8tz/CVE-2022-24999">Researcher Advisory</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-QS-3153490">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
<h2 class="card__title">Regular Expression Denial of Service (ReDoS)</h2>
<div class="card__section">
@@ -493,13 +592,1844 @@ <h2 class="card__title">Regular Expression Denial of Service (ReDoS)</h2>
<li class="card__meta__item">
Vulnerable module:
- moment
+ moment
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, argo-ui@1.0.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ argo-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ moment@2.29.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ argo-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ antd@4.18.3
+ <span class="list-paths__item__arrow">›</span>
+ moment@2.29.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ argo-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ moment-timezone@0.5.33
+ <span class="list-paths__item__arrow">›</span>
+ moment@2.29.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ argo-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ antd@4.18.3
+ <span class="list-paths__item__arrow">›</span>
+ rc-picker@2.5.19
+ <span class="list-paths__item__arrow">›</span>
+ moment@2.29.1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.com/package/moment">moment</a> is a lightweight JavaScript date library for parsing, validating, manipulating, and formatting dates.</p>
+ <p>Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via the <code>preprocessRFC2822()</code> function in <code>from-string.js</code>, when processing a very long crafted string (over 10k characters).</p>
+ <h2 id="poc">PoC:</h2>
+ <pre><code class="language-js">moment("(".repeat(500000))
+ </code></pre>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.</p>
+ <p>The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.</p>
+ <p>Let’s take the following regular expression as an example:</p>
+ <pre><code class="language-js">regex = /A(B|C+)+D/
+ </code></pre>
+ <p>This regular expression accomplishes the following:</p>
+ <ul>
+ <li><code>A</code> The string must start with the letter 'A'</li>
+ <li><code>(B|C+)+</code> The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the <code>+</code> matches one or more times). The <code>+</code> at the end of this section states that we can look for one or more matches of this section.</li>
+ <li><code>D</code> Finally, we ensure this section of the string ends with a 'D'</li>
+ </ul>
+ <p>The expression would match inputs such as <code>ABBD</code>, <code>ABCCCCD</code>, <code>ABCBCCCD</code> and <code>ACCCCCD</code></p>
+ <p>It most cases, it doesn't take very long for a regex engine to find a match:</p>
+ <pre><code class="language-bash">$ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
+ 0.04s user 0.01s system 95% cpu 0.052 total
+
+ $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
+ 1.79s user 0.02s system 99% cpu 1.812 total
+ </code></pre>
+ <p>The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.</p>
+ <p>Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as <em>catastrophic backtracking</em>.</p>
+ <p>Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:</p>
+ <ol>
+ <li>CCC</li>
+ <li>CC+C</li>
+ <li>C+CC</li>
+ <li>C+C+C.</li>
+ </ol>
+ <p>The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use <a href="https://regex101.com/debugger">RegEx 101 debugger</a> to see the engine has to take a total of 38 steps before it can determine the string doesn't match.</p>
+ <p>From there, the number of steps the engine must use to validate a string just continues to grow.</p>
+ <table>
+ <thead>
+ <tr>
+ <th>String</th>
+ <th align="right">Number of C's</th>
+ <th align="right">Number of steps</th>
+ </tr>
+ </thead>
+ <tbody><tr>
+ <td>ACCCX</td>
+ <td align="right">3</td>
+ <td align="right">38</td>
+ </tr>
+ <tr>
+ <td>ACCCCX</td>
+ <td align="right">4</td>
+ <td align="right">71</td>
+ </tr>
+ <tr>
+ <td>ACCCCCX</td>
+ <td align="right">5</td>
+ <td align="right">136</td>
+ </tr>
+ <tr>
+ <td>ACCCCCCCCCCCCCCX</td>
+ <td align="right">14</td>
+ <td align="right">65,553</td>
+ </tr>
+ </tbody></table>
+ <p>By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>moment</code> to version 2.29.4 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/moment/moment/commit/9a3b5894f3d5d602948ac8a02e4ee528a49ca3a3">GitHub Commit</a></li>
+ <li><a href="https://github.com/moment/moment/issues/6012">GitHub Issue</a></li>
+ <li><a href="https://github.com/moment/moment/pull/6015">GitHub PR</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-MOMENT-2944238">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Denial of Service (DoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ golang.org/x/net/http2
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, k8s.io/client-go/rest@0.23.1 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/soheilhy/cmux@0.1.5
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#36c59d8fafe0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/auth@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-prometheus@1.2.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/retry@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/rbac/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#36c59d8fafe0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection/grpc_reflection_v1alpha@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/testing/controlplane@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/resource@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/testing@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/resource@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/podutils@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/portforward@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus/ctxlogrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.15.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/diff@0.6.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/conversion@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#491a49abca63
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/golang.org/x/net@v0.0.0-20211209100829-84cba5454caf/http2#section-readme">golang.org/x/net/http2</a> is a work-in-progress HTTP/2 implementation for Go.</p>
+ <p>Affected versions of this package are vulnerable to Denial of Service (DoS) due to improper checks and limitations for the number of entries in the cache, which can allow an attacker to consume unbounded amounts of memory by sending a small number of very large keys.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>golang.org/x/net/http2</code> to version 0.4.0 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://cs.opensource.google/go/x/net/+/1e63c2f08a10a150fa02c50ece89b340ae64efe4">Fix Commit</a></li>
+ <li><a href="https://go-review.googlesource.com/c/net/+/455635">Fix Commit</a></li>
+ <li><a href="https://github.com/golang/net/commit/1e63c2f08a10a150fa02c50ece89b340ae64efe4">GitHub Commit</a></li>
+ <li><a href="https://github.com/golang/go/issues/56350">GitHub Issue</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOLANGORGXNETHTTP2-3160322">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Denial of Service (DoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ decode-uri-component
</li>
<li class="card__meta__item">Introduced through:
- argo-cd-ui@1.0.0, argo-ui@1.0.0 and others
+ argo-cd-ui@1.0.0, git-url-parse@11.1.2 and others
</li>
</ul>
@@ -513,50 +2443,17 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
argo-cd-ui@1.0.0
<span class="list-paths__item__arrow">›</span>
- argo-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- moment@2.29.1
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- argo-cd-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- argo-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- antd@4.18.3
- <span class="list-paths__item__arrow">›</span>
- moment@2.29.1
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- argo-cd-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- argo-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- moment-timezone@0.5.33
+ git-url-parse@11.1.2
<span class="list-paths__item__arrow">›</span>
- moment@2.29.1
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- argo-cd-ui@1.0.0
+ git-up@4.0.5
<span class="list-paths__item__arrow">›</span>
- argo-ui@1.0.0
+ parse-url@6.0.5
<span class="list-paths__item__arrow">›</span>
- antd@4.18.3
+ parse-path@4.0.3
<span class="list-paths__item__arrow">›</span>
- rc-picker@2.5.19
+ query-string@6.14.1
<span class="list-paths__item__arrow">›</span>
- moment@2.29.1
+ decode-uri-component@0.2.0
</span>
@@ -568,85 +2465,39 @@ <h3 class="card__section__title">Detailed paths</h3>
<hr/>
<!-- Overview -->
<h2 id="overview">Overview</h2>
- <p><a href="https://www.npmjs.com/package/moment">moment</a> is a lightweight JavaScript date library for parsing, validating, manipulating, and formatting dates.</p>
- <p>Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via the <code>preprocessRFC2822()</code> function in <code>from-string.js</code>, when processing a very long crafted string (over 10k characters).</p>
- <h2 id="poc">PoC:</h2>
- <pre><code class="language-js">moment("(".repeat(500000))
+ <p>Affected versions of this package are vulnerable to Denial of Service (DoS) due to improper input validation, when the hash string <code># kun%ea%ba%5a%ba</code> is being parsed by <code>decodeUriComponent</code>.</p>
+ <h2 id="poc">PoC</h2>
+ <pre><code class="language-js">const decodeUriComponent = require('decode-uri-component');
+
+ var x = decodeUriComponent('%ea%ba%5a%ba');
+
+ console.log(x);
</code></pre>
<h2 id="details">Details</h2>
- <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.</p>
- <p>The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.</p>
- <p>Let’s take the following regular expression as an example:</p>
- <pre><code class="language-js">regex = /A(B|C+)+D/
- </code></pre>
- <p>This regular expression accomplishes the following:</p>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
<ul>
- <li><code>A</code> The string must start with the letter 'A'</li>
- <li><code>(B|C+)+</code> The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the <code>+</code> matches one or more times). The <code>+</code> at the end of this section states that we can look for one or more matches of this section.</li>
- <li><code>D</code> Finally, we ensure this section of the string ends with a 'D'</li>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
</ul>
- <p>The expression would match inputs such as <code>ABBD</code>, <code>ABCCCCD</code>, <code>ABCBCCCD</code> and <code>ACCCCCD</code></p>
- <p>It most cases, it doesn't take very long for a regex engine to find a match:</p>
- <pre><code class="language-bash">$ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
- 0.04s user 0.01s system 95% cpu 0.052 total
-
- $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
- 1.79s user 0.02s system 99% cpu 1.812 total
- </code></pre>
- <p>The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.</p>
- <p>Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as <em>catastrophic backtracking</em>.</p>
- <p>Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:</p>
- <ol>
- <li>CCC</li>
- <li>CC+C</li>
- <li>C+CC</li>
- <li>C+C+C.</li>
- </ol>
- <p>The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use <a href="https://regex101.com/debugger">RegEx 101 debugger</a> to see the engine has to take a total of 38 steps before it can determine the string doesn't match.</p>
- <p>From there, the number of steps the engine must use to validate a string just continues to grow.</p>
- <table>
- <thead>
- <tr>
- <th>String</th>
- <th align="right">Number of C's</th>
- <th align="right">Number of steps</th>
- </tr>
- </thead>
- <tbody><tr>
- <td>ACCCX</td>
- <td align="right">3</td>
- <td align="right">38</td>
- </tr>
- <tr>
- <td>ACCCCX</td>
- <td align="right">4</td>
- <td align="right">71</td>
- </tr>
- <tr>
- <td>ACCCCCX</td>
- <td align="right">5</td>
- <td align="right">136</td>
- </tr>
- <tr>
- <td>ACCCCCCCCCCCCCCX</td>
- <td align="right">14</td>
- <td align="right">65,553</td>
- </tr>
- </tbody></table>
- <p>By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.</p>
<h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>moment</code> to version 2.29.4 or higher.</p>
+ <p>Upgrade <code>decode-uri-component</code> to version 0.2.2 or higher.</p>
<h2 id="references">References</h2>
<ul>
- <li><a href="https://github.com/moment/moment/commit/9a3b5894f3d5d602948ac8a02e4ee528a49ca3a3">GitHub Commit</a></li>
- <li><a href="https://github.com/moment/moment/issues/6012">GitHub Issue</a></li>
- <li><a href="https://github.com/moment/moment/pull/6015">GitHub PR</a></li>
+ <li><a href="https://github.com/SamVerschueren/decode-uri-component/commit/980e0bf09b64d94f1aa79012f895816c30ffd152">GitHub Commit</a></li>
+ <li><a href="https://github.com/SamVerschueren/decode-uri-component/issues/5">GitHub Issue</a></li>
+ <li><a href="https://github.com/sindresorhus/query-string/issues/345">GitHub Issue</a></li>
</ul>
<hr/>
<div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-JS-MOMENT-2944238">More about this vulnerability</a></p>
+ <p><a href="https://snyk.io/vuln/SNYK-JS-DECODEURICOMPONENT-3149970">More about this vulnerability</a></p>
</div>
</div><!-- .card -->
@@ -1408,6 +3259,111 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Insecure Randomness</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ github.com/Masterminds/goutils
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, github.com/argoproj/notifications-engine/pkg/api@#91deed20b998 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#91deed20b998
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/github.com/masterminds/goutils">github.com/masterminds/goutils</a> is a provides users with utility functions to manipulate strings in various ways.</p>
+ <p>Affected versions of this package are vulnerable to Insecure Randomness when randomly-generated alphanumeric strings contain significantly less entropy than expected, the <code>RandomAlphaNumeric</code> and <code>CryptoRandomAlphaNumeric</code> functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by these functions.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>github.com/masterminds/goutils</code> to version 1.1.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/Masterminds/goutils/commit/869801f20f9f1e7ecdbdb6422049d8241270d5e1">GitHub Commit</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMASTERMINDSGOUTILS-3121153">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/v2.3.11/ghcr.io_dexidp_dex_v2.35.3-distroless.html b/docs/snyk/v2.3.11/ghcr.io_dexidp_dex_v2.35.3-distroless.html
index 070bb1fd51215..cb97ff3119367 100644
--- a/docs/snyk/v2.3.11/ghcr.io_dexidp_dex_v2.35.3-distroless.html
+++ b/docs/snyk/v2.3.11/ghcr.io_dexidp_dex_v2.35.3-distroless.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:22:32 am</p>
+ <p class="timestamp">December 11th 2022, 12:22:40 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/v2.3.11/haproxy_2.0.29-alpine.html b/docs/snyk/v2.3.11/haproxy_2.0.29-alpine.html
index 29dfb20bc66d4..561f4eee1f201 100644
--- a/docs/snyk/v2.3.11/haproxy_2.0.29-alpine.html
+++ b/docs/snyk/v2.3.11/haproxy_2.0.29-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:22:35 am</p>
+ <p class="timestamp">December 11th 2022, 12:22:44 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/v2.3.11/quay.io_argoproj_argocd-applicationset_v0.4.1.html b/docs/snyk/v2.3.11/quay.io_argoproj_argocd-applicationset_v0.4.1.html
index 9b8b6d58f8b07..752d1a31a2582 100644
--- a/docs/snyk/v2.3.11/quay.io_argoproj_argocd-applicationset_v0.4.1.html
+++ b/docs/snyk/v2.3.11/quay.io_argoproj_argocd-applicationset_v0.4.1.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:22:50 am</p>
+ <p class="timestamp">December 11th 2022, 12:23:00 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -1357,6 +1357,10 @@ <h2 id="references">References</h2>
<li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2024628">MISC</a></li>
<li><a href="https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes">MISC</a></li>
<li><a href="https://www.openwall.com/lists/oss-security/2022/01/24/2">MISC</a></li>
+ <li><a href="http://www.openwall.com/lists/oss-security/2022/11/30/2">MLIST</a></li>
+ <li><a href="http://seclists.org/fulldisclosure/2022/Dec/4">FULLDISC</a></li>
+ <li><a href="http://packetstormsecurity.com/files/170176/snap-confine-must_mkdir_and_open_with_perms-Race-Condition.html">MISC</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221209-0002/">CONFIRM</a></li>
</ul>
<hr/>
@@ -1601,6 +1605,10 @@ <h2 id="references">References</h2>
<li><a href="https://github.com/util-linux/util-linux/commit/57202f5713afa2af20ffbb6ab5331481d0396f8d">MISC</a></li>
<li><a href="https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes">MISC</a></li>
<li><a href="https://www.openwall.com/lists/oss-security/2022/01/24/2">MISC</a></li>
+ <li><a href="http://www.openwall.com/lists/oss-security/2022/11/30/2">MLIST</a></li>
+ <li><a href="http://seclists.org/fulldisclosure/2022/Dec/4">FULLDISC</a></li>
+ <li><a href="http://packetstormsecurity.com/files/170176/snap-confine-must_mkdir_and_open_with_perms-Race-Condition.html">MISC</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221209-0002/">CONFIRM</a></li>
</ul>
<hr/>
@@ -7145,6 +7153,7 @@ <h2 id="references">References</h2>
<li><a href="https://lists.debian.org/debian-lts-announce/2021/12/msg00001.html">MLIST</a></li>
<li><a href="http://www.openwall.com/lists/oss-security/2022/10/13/3">MLIST</a></li>
<li><a href="http://seclists.org/fulldisclosure/2022/Oct/8">FULLDISC</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221111-0001/">CONFIRM</a></li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.3.11/quay.io_argoproj_argocd_v2.3.11.html b/docs/snyk/v2.3.11/quay.io_argoproj_argocd_v2.3.11.html
index d14288e8f68fa..34bcd8e7894cc 100644
--- a/docs/snyk/v2.3.11/quay.io_argoproj_argocd_v2.3.11.html
+++ b/docs/snyk/v2.3.11/quay.io_argoproj_argocd_v2.3.11.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="16 known vulnerabilities found in 87 vulnerable dependency paths.">
+ <meta name="description" content="18 known vulnerabilities found in 89 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:23:30 am</p>
+ <p class="timestamp">December 11th 2022, 12:23:32 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -466,8 +466,8 @@ <h1 class="project__header__title">Snyk test report</h1>
</div>
<div class="meta-counts">
- <div class="meta-count"><span>16</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>87 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>18</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>89 vulnerable dependency paths</span></div>
<div class="meta-count"><span>162</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
@@ -485,79 +485,6 @@ <h1 class="project__header__title">Snyk test report</h1>
</section>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-42800</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- zlib/zlib1g
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- docker-image|quay.io/argoproj/argocd@v2.3.11, meta-common-packages@meta and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.3.11
- <span class="list-paths__item__arrow">›</span>
- meta-common-packages@meta
- <span class="list-paths__item__arrow">›</span>
- zlib/zlib1g@1:1.2.11.dfsg-2ubuntu9.2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>zlib</code> package.</em></p>
- <p>This issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A user may be able to cause unexpected app termination or arbitrary code execution.</p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>zlib</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-42800">ADVISORY</a></li>
- <li><a href="https://support.apple.com/en-us/HT213488">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213494">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213493">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213490">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213491">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213489">MISC</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-ZLIB-3098559">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
<h2 class="card__title">Off-by-one Error</h2>
<div class="card__section">
@@ -719,6 +646,7 @@ <h2 id="references">References</h2>
<li><a href="https://github.com/systemd/systemd/commit/9102c625a673a3246d7e73d8737f3494446bad4e">MISC</a></li>
<li><a href="https://github.com/systemd/systemd/pull/23933">MISC</a></li>
<li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2139327">MISC</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVBQC2VLSDVQAPJTEMTREXDL4HYLXG2P/">FEDORA</a></li>
</ul>
<hr/>
@@ -803,7 +731,7 @@ <h2 id="references">References</h2>
</div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-3715</h2>
+ <h2 class="card__title">Use After Free</h2>
<div class="card__section">
<div class="label label--medium">
@@ -819,13 +747,13 @@ <h2 class="card__title">CVE-2022-3715</h2>
<li class="card__meta__item">
Vulnerable module:
- bash
+ expat/libexpat1
</li>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.3.11 and bash@5.1-6ubuntu1
+ docker-image|quay.io/argoproj/argocd@v2.3.11, git@1:2.34.1-1ubuntu1.5 and others
</li>
</ul>
@@ -839,7 +767,9 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
docker-image|quay.io/argoproj/argocd@v2.3.11
<span class="list-paths__item__arrow">›</span>
- bash@5.1-6ubuntu1
+ git@1:2.34.1-1ubuntu1.5
+ <span class="list-paths__item__arrow">›</span>
+ expat/libexpat1@2.4.7-1
</span>
@@ -851,18 +781,181 @@ <h3 class="card__section__title">Detailed paths</h3>
<hr/>
<!-- Overview -->
<h2 id="nvd-description">NVD Description</h2>
- <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>expat</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
+ <p>libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.</p>
<h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>expat</code> to version 2.4.7-1ubuntu0.1 or higher.</p>
<h2 id="references">References</h2>
<ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-40674">ADVISORY</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/629">MISC</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/640">MISC</a></li>
+ <li><a href="https://www.debian.org/security/2022/dsa-5236">DEBIAN</a></li>
+ <li><a href="https://lists.debian.org/debian-lts-announce/2022/09/msg00029.html">MLIST</a></li>
+ <li><a href="https://security.gentoo.org/glsa/202209-24">GENTOO</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2ZKEPGFCZ7R6DRVH3K6RBJPT42ZBEG/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J2IGJNHFV53PYST7VQV3T4NHVYAMXA36/">FEDORA</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221028-0008/">CONFIRM</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSVZN3IJ6OCPSJL7AEX3ZHSHAHFOGESK/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCGBVQQ47URGJAZWHCISHDWF6QBTV2LE/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LQB6FJAM5YQ35SF5B2MN25Y2FX56EOEZ/">FEDORA</a></li>
+ <li><a href="https://security.gentoo.org/glsa/202211-06">GENTOO</a></li>
</ul>
<hr/>
<div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-EXPAT-3024542">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Use After Free</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ expat/libexpat1
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ docker-image|quay.io/argoproj/argocd@v2.3.11, git@1:2.34.1-1ubuntu1.5 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.3.11
+ <span class="list-paths__item__arrow">›</span>
+ git@1:2.34.1-1ubuntu1.5
+ <span class="list-paths__item__arrow">›</span>
+ expat/libexpat1@2.4.7-1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>expat</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
+ <p>In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>expat</code> to version 2.4.7-1ubuntu0.2 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-43680">ADVISORY</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/650">MISC</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/616">MISC</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/issues/649">MISC</a></li>
+ <li><a href="https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html">MLIST</a></li>
+ <li><a href="https://www.debian.org/security/2022/dsa-5266">DEBIAN</a></li>
+ <li><a href="https://security.gentoo.org/glsa/202210-38">GENTOO</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/">FEDORA</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221118-0007/">CONFIRM</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-EXPAT-3063193">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Insufficient Verification of Data Authenticity</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ ca-certificates
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+ docker-image|quay.io/argoproj/argocd@v2.3.11 and ca-certificates@20211016
+
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.3.11
+ <span class="list-paths__item__arrow">›</span>
+ ca-certificates@20211016
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>ca-certificates</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
+ <p>Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from "TrustCor" from the root store. These are in the process of being removed from Mozilla's trust store. TrustCor's root certificates are being removed pursuant to an investigation prompted by media reporting that TrustCor's ownership also operated a business that produced spyware. Conclusions of Mozilla's investigation can be found in the linked google group discussion.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>ca-certificates</code> to version 20211016ubuntu0.22.04.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-23491">ADVISORY</a></li>
+ <li><a href="https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/oxX69KFvsm4/m/yLohoVqtCgAJ">MISC</a></li>
+ <li><a href="https://github.com/certifi/python-certifi/security/advisories/GHSA-43fp-rhv2-5gv8">MISC</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-CACERTIFICATES-3165207">More about this vulnerability</a></p>
</div>
</div><!-- .card -->
@@ -946,10 +1039,11 @@ <h3 class="card__section__title">Detailed paths</h3>
<hr/>
<!-- Overview -->
<h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>shadow</code> package.</em></p>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>shadow</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
<p>shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees</p>
<h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>shadow</code>.</p>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>shadow</code> to version 1:4.8.1-2ubuntu2.1 or higher.</p>
<h2 id="references">References</h2>
<ul>
<li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2013-4235">ADVISORY</a></li>
@@ -2421,6 +2515,70 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
+ <h2 class="card__title">CVE-2022-3715</h2>
+ <div class="card__section">
+
+ <div class="label label--low">
+ <span class="label__text">low severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ bash
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+ docker-image|quay.io/argoproj/argocd@v2.3.11 and bash@5.1-6ubuntu1
+
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.3.11
+ <span class="list-paths__item__arrow">›</span>
+ bash@5.1-6ubuntu1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
+ <h2 id="remediation">Remediation</h2>
+ <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/v2.3.11/redis_6.2.7-alpine.html b/docs/snyk/v2.3.11/redis_6.2.7-alpine.html
index b926ef79c70c8..35ea6a87a9e6a 100644
--- a/docs/snyk/v2.3.11/redis_6.2.7-alpine.html
+++ b/docs/snyk/v2.3.11/redis_6.2.7-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:23:36 am</p>
+ <p class="timestamp">December 11th 2022, 12:23:38 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -468,7 +468,7 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="meta-counts">
<div class="meta-count"><span>0</span> <span>known vulnerabilities</span></div>
<div class="meta-count"><span>0 vulnerable dependency paths</span></div>
- <div class="meta-count"><span>17</span> <span>dependencies</span></div>
+ <div class="meta-count"><span>18</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
</header><!-- .project__header -->
diff --git a/docs/snyk/v2.4.17/argocd-iac-install.html b/docs/snyk/v2.4.17/argocd-iac-install.html
index c83430081f17d..ce7b3954b2ef1 100644
--- a/docs/snyk/v2.4.17/argocd-iac-install.html
+++ b/docs/snyk/v2.4.17/argocd-iac-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:22:02 am</p>
+ <p class="timestamp">December 11th 2022, 12:22:10 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -500,14 +500,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9063
+ </li>
</ul>
<hr/>
@@ -545,14 +546,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[4]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9140
+ </li>
</ul>
<hr/>
@@ -590,14 +592,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 12]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9168
+ </li>
</ul>
<hr/>
@@ -635,14 +638,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9212
+ </li>
</ul>
<hr/>
@@ -680,14 +684,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9194
+ </li>
</ul>
<hr/>
@@ -725,14 +730,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 14]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9228
+ </li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.4.17/argocd-iac-namespace-install.html b/docs/snyk/v2.4.17/argocd-iac-namespace-install.html
index bb9b9090b9ea1..47797491c2f83 100644
--- a/docs/snyk/v2.4.17/argocd-iac-namespace-install.html
+++ b/docs/snyk/v2.4.17/argocd-iac-namespace-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:22:13 am</p>
+ <p class="timestamp">December 11th 2022, 12:22:20 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -500,14 +500,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 7]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 73
+ </li>
</ul>
<hr/>
@@ -545,14 +546,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 8]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[4]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 150
+ </li>
</ul>
<hr/>
@@ -590,14 +592,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 9]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 178
+ </li>
</ul>
<hr/>
@@ -635,14 +638,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 222
+ </li>
</ul>
<hr/>
@@ -680,14 +684,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 204
+ </li>
</ul>
<hr/>
@@ -725,14 +730,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 238
+ </li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.4.17/argocd-test.html b/docs/snyk/v2.4.17/argocd-test.html
index 184dc371fc3a9..95ce60e321cb2 100644
--- a/docs/snyk/v2.4.17/argocd-test.html
+++ b/docs/snyk/v2.4.17/argocd-test.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="6 known vulnerabilities found in 11 vulnerable dependency paths.">
+ <meta name="description" content="10 known vulnerabilities found in 133 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:20:21 am</p>
+ <p class="timestamp">December 11th 2022, 12:20:28 am</p>
</div>
<div class="source-panel">
<span>Scanned the following paths:</span>
@@ -466,8 +466,8 @@ <h1 class="project__header__title">Snyk test report</h1>
</div>
<div class="meta-counts">
- <div class="meta-count"><span>6</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>11 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>10</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>133 vulnerable dependency paths</span></div>
<div class="meta-count"><span>1648</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
@@ -476,6 +476,2371 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Prototype Poisoning</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ qs
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, superagent@3.8.3 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ superagent@3.8.3
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.10.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.6.0
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-path@4.0.4
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.10.1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.com/package/qs">qs</a> is a querystring parser that supports nesting and arrays, with a depth limit.</p>
+ <p>Affected versions of this package are vulnerable to Prototype Poisoning which allows attackers to cause a Node process to hang, processing an Array object whose prototype has been replaced by one with an excessive length value.</p>
+ <p><strong>Note:</strong> In many typical Express use cases, an unauthenticated remote attacker can place the attack payload in the query string of the URL that is used to visit the application, such as <code>a[__proto__]=b&a[__proto__]&a[length]=100000000</code>.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>qs</code> to version 6.2.4, 6.3.3, 6.4.1, 6.5.3, 6.6.1, 6.7.3, 6.8.3, 6.9.7, 6.10.3 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/ljharb/qs/pull/428">GitHub PR</a></li>
+ <li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2150323">RedHat Bugzilla Bug</a></li>
+ <li><a href="https://github.com/n8tz/CVE-2022-24999">Researcher Advisory</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-QS-3153490">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Denial of Service (DoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ golang.org/x/net/http2
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, k8s.io/client-go/rest@0.23.1 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/soheilhy/cmux@0.1.5
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#36c59d8fafe0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/record@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/auth@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/retry@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-prometheus@1.2.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@0.31.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc@1.6.3
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/rbac/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/scheme@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/equality@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#36c59d8fafe0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection/grpc_reflection_v1alpha@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/testing/controlplane@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/managedfields@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/resource@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/testing@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/record@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/reference@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/pkg/apis/clientauthentication/v1beta1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/pkg/apis/clientauthentication@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/scheme@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/util/retry@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/resource@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/podutils@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/validation@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/validation@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/portforward@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus/ctxlogrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/cache@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/manager@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/internal/metrics@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/metrics@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/handler@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/diff@0.7.3
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/conversion@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/cache@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source/internal@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/predicate@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/handler@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source/internal@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/predicate@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.23.1
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/golang.org/x/net@v0.0.0-20211209100829-84cba5454caf/http2#section-readme">golang.org/x/net/http2</a> is a work-in-progress HTTP/2 implementation for Go.</p>
+ <p>Affected versions of this package are vulnerable to Denial of Service (DoS) due to improper checks and limitations for the number of entries in the cache, which can allow an attacker to consume unbounded amounts of memory by sending a small number of very large keys.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>golang.org/x/net/http2</code> to version 0.4.0 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://cs.opensource.google/go/x/net/+/1e63c2f08a10a150fa02c50ece89b340ae64efe4">Fix Commit</a></li>
+ <li><a href="https://go-review.googlesource.com/c/net/+/455635">Fix Commit</a></li>
+ <li><a href="https://github.com/golang/net/commit/1e63c2f08a10a150fa02c50ece89b340ae64efe4">GitHub Commit</a></li>
+ <li><a href="https://github.com/golang/go/issues/56350">GitHub Issue</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOLANGORGXNETHTTP2-3160322">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Denial of Service (DoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ decode-uri-component
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.6.0
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-path@4.0.4
+ <span class="list-paths__item__arrow">›</span>
+ query-string@6.14.1
+ <span class="list-paths__item__arrow">›</span>
+ decode-uri-component@0.2.0
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p>Affected versions of this package are vulnerable to Denial of Service (DoS) due to improper input validation, when the hash string <code># kun%ea%ba%5a%ba</code> is being parsed by <code>decodeUriComponent</code>.</p>
+ <h2 id="poc">PoC</h2>
+ <pre><code class="language-js">const decodeUriComponent = require('decode-uri-component');
+
+ var x = decodeUriComponent('%ea%ba%5a%ba');
+
+ console.log(x);
+ </code></pre>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>decode-uri-component</code> to version 0.2.2 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/SamVerschueren/decode-uri-component/commit/980e0bf09b64d94f1aa79012f895816c30ffd152">GitHub Commit</a></li>
+ <li><a href="https://github.com/SamVerschueren/decode-uri-component/issues/5">GitHub Issue</a></li>
+ <li><a href="https://github.com/sindresorhus/query-string/issues/345">GitHub Issue</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-DECODEURICOMPONENT-3149970">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
<h2 class="card__title">Server-side Request Forgery (SSRF)</h2>
<div class="card__section">
@@ -1113,6 +3478,111 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Insecure Randomness</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ github.com/Masterminds/goutils
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, github.com/argoproj/notifications-engine/pkg/api@#567361917320 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#567361917320
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/github.com/masterminds/goutils">github.com/masterminds/goutils</a> is a provides users with utility functions to manipulate strings in various ways.</p>
+ <p>Affected versions of this package are vulnerable to Insecure Randomness when randomly-generated alphanumeric strings contain significantly less entropy than expected, the <code>RandomAlphaNumeric</code> and <code>CryptoRandomAlphaNumeric</code> functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by these functions.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>github.com/masterminds/goutils</code> to version 1.1.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/Masterminds/goutils/commit/869801f20f9f1e7ecdbdb6422049d8241270d5e1">GitHub Commit</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMASTERMINDSGOUTILS-3121153">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/v2.4.17/ghcr.io_dexidp_dex_v2.35.3-distroless.html b/docs/snyk/v2.4.17/ghcr.io_dexidp_dex_v2.35.3-distroless.html
index eee921b8c7af6..3d49eb60e77be 100644
--- a/docs/snyk/v2.4.17/ghcr.io_dexidp_dex_v2.35.3-distroless.html
+++ b/docs/snyk/v2.4.17/ghcr.io_dexidp_dex_v2.35.3-distroless.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:20:26 am</p>
+ <p class="timestamp">December 11th 2022, 12:20:37 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/v2.4.17/haproxy_2.0.29-alpine.html b/docs/snyk/v2.4.17/haproxy_2.0.29-alpine.html
index 2f3ea3addecaf..289431d7a50f2 100644
--- a/docs/snyk/v2.4.17/haproxy_2.0.29-alpine.html
+++ b/docs/snyk/v2.4.17/haproxy_2.0.29-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:20:31 am</p>
+ <p class="timestamp">December 11th 2022, 12:20:44 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/v2.4.17/quay.io_argoproj_argocd_v2.4.17.html b/docs/snyk/v2.4.17/quay.io_argoproj_argocd_v2.4.17.html
index e801aebe2ab36..607324adc09de 100644
--- a/docs/snyk/v2.4.17/quay.io_argoproj_argocd_v2.4.17.html
+++ b/docs/snyk/v2.4.17/quay.io_argoproj_argocd_v2.4.17.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="16 known vulnerabilities found in 87 vulnerable dependency paths.">
+ <meta name="description" content="18 known vulnerabilities found in 89 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:20:53 am</p>
+ <p class="timestamp">December 11th 2022, 12:21:06 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -466,8 +466,8 @@ <h1 class="project__header__title">Snyk test report</h1>
</div>
<div class="meta-counts">
- <div class="meta-count"><span>16</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>87 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>18</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>89 vulnerable dependency paths</span></div>
<div class="meta-count"><span>162</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
@@ -485,79 +485,6 @@ <h1 class="project__header__title">Snyk test report</h1>
</section>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-42800</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- zlib/zlib1g
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- docker-image|quay.io/argoproj/argocd@v2.4.17, meta-common-packages@meta and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.4.17
- <span class="list-paths__item__arrow">›</span>
- meta-common-packages@meta
- <span class="list-paths__item__arrow">›</span>
- zlib/zlib1g@1:1.2.11.dfsg-2ubuntu9.2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>zlib</code> package.</em></p>
- <p>This issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A user may be able to cause unexpected app termination or arbitrary code execution.</p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>zlib</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-42800">ADVISORY</a></li>
- <li><a href="https://support.apple.com/en-us/HT213488">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213494">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213493">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213490">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213491">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213489">MISC</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-ZLIB-3098559">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
<h2 class="card__title">Off-by-one Error</h2>
<div class="card__section">
@@ -719,6 +646,7 @@ <h2 id="references">References</h2>
<li><a href="https://github.com/systemd/systemd/commit/9102c625a673a3246d7e73d8737f3494446bad4e">MISC</a></li>
<li><a href="https://github.com/systemd/systemd/pull/23933">MISC</a></li>
<li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2139327">MISC</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVBQC2VLSDVQAPJTEMTREXDL4HYLXG2P/">FEDORA</a></li>
</ul>
<hr/>
@@ -803,7 +731,7 @@ <h2 id="references">References</h2>
</div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-3715</h2>
+ <h2 class="card__title">Use After Free</h2>
<div class="card__section">
<div class="label label--medium">
@@ -819,13 +747,13 @@ <h2 class="card__title">CVE-2022-3715</h2>
<li class="card__meta__item">
Vulnerable module:
- bash
+ expat/libexpat1
</li>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.4.17 and bash@5.1-6ubuntu1
+ docker-image|quay.io/argoproj/argocd@v2.4.17, git@1:2.34.1-1ubuntu1.5 and others
</li>
</ul>
@@ -839,7 +767,9 @@ <h3 class="card__section__title">Detailed paths</h3>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
docker-image|quay.io/argoproj/argocd@v2.4.17
<span class="list-paths__item__arrow">›</span>
- bash@5.1-6ubuntu1
+ git@1:2.34.1-1ubuntu1.5
+ <span class="list-paths__item__arrow">›</span>
+ expat/libexpat1@2.4.7-1
</span>
@@ -851,18 +781,181 @@ <h3 class="card__section__title">Detailed paths</h3>
<hr/>
<!-- Overview -->
<h2 id="nvd-description">NVD Description</h2>
- <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>expat</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
+ <p>libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.</p>
<h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>expat</code> to version 2.4.7-1ubuntu0.1 or higher.</p>
<h2 id="references">References</h2>
<ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-40674">ADVISORY</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/629">MISC</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/640">MISC</a></li>
+ <li><a href="https://www.debian.org/security/2022/dsa-5236">DEBIAN</a></li>
+ <li><a href="https://lists.debian.org/debian-lts-announce/2022/09/msg00029.html">MLIST</a></li>
+ <li><a href="https://security.gentoo.org/glsa/202209-24">GENTOO</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2ZKEPGFCZ7R6DRVH3K6RBJPT42ZBEG/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J2IGJNHFV53PYST7VQV3T4NHVYAMXA36/">FEDORA</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221028-0008/">CONFIRM</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GSVZN3IJ6OCPSJL7AEX3ZHSHAHFOGESK/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCGBVQQ47URGJAZWHCISHDWF6QBTV2LE/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LQB6FJAM5YQ35SF5B2MN25Y2FX56EOEZ/">FEDORA</a></li>
+ <li><a href="https://security.gentoo.org/glsa/202211-06">GENTOO</a></li>
</ul>
<hr/>
<div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-EXPAT-3024542">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Use After Free</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ expat/libexpat1
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ docker-image|quay.io/argoproj/argocd@v2.4.17, git@1:2.34.1-1ubuntu1.5 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.4.17
+ <span class="list-paths__item__arrow">›</span>
+ git@1:2.34.1-1ubuntu1.5
+ <span class="list-paths__item__arrow">›</span>
+ expat/libexpat1@2.4.7-1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>expat</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
+ <p>In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>expat</code> to version 2.4.7-1ubuntu0.2 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-43680">ADVISORY</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/650">MISC</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/pull/616">MISC</a></li>
+ <li><a href="https://github.com/libexpat/libexpat/issues/649">MISC</a></li>
+ <li><a href="https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html">MLIST</a></li>
+ <li><a href="https://www.debian.org/security/2022/dsa-5266">DEBIAN</a></li>
+ <li><a href="https://security.gentoo.org/glsa/202210-38">GENTOO</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/">FEDORA</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/">FEDORA</a></li>
+ <li><a href="https://security.netapp.com/advisory/ntap-20221118-0007/">CONFIRM</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-EXPAT-3063193">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Insufficient Verification of Data Authenticity</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ ca-certificates
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+ docker-image|quay.io/argoproj/argocd@v2.4.17 and ca-certificates@20211016
+
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.4.17
+ <span class="list-paths__item__arrow">›</span>
+ ca-certificates@20211016
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>ca-certificates</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
+ <p>Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from "TrustCor" from the root store. These are in the process of being removed from Mozilla's trust store. TrustCor's root certificates are being removed pursuant to an investigation prompted by media reporting that TrustCor's ownership also operated a business that produced spyware. Conclusions of Mozilla's investigation can be found in the linked google group discussion.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>ca-certificates</code> to version 20211016ubuntu0.22.04.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-23491">ADVISORY</a></li>
+ <li><a href="https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/oxX69KFvsm4/m/yLohoVqtCgAJ">MISC</a></li>
+ <li><a href="https://github.com/certifi/python-certifi/security/advisories/GHSA-43fp-rhv2-5gv8">MISC</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-CACERTIFICATES-3165207">More about this vulnerability</a></p>
</div>
</div><!-- .card -->
@@ -946,10 +1039,11 @@ <h3 class="card__section__title">Detailed paths</h3>
<hr/>
<!-- Overview -->
<h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>shadow</code> package.</em></p>
+ <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>shadow</code> package.</em>
+ <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
<p>shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees</p>
<h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>shadow</code>.</p>
+ <p>Upgrade <code>Ubuntu:22.04</code> <code>shadow</code> to version 1:4.8.1-2ubuntu2.1 or higher.</p>
<h2 id="references">References</h2>
<ul>
<li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2013-4235">ADVISORY</a></li>
@@ -2421,6 +2515,70 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
+ <h2 class="card__title">CVE-2022-3715</h2>
+ <div class="card__section">
+
+ <div class="label label--low">
+ <span class="label__text">low severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ bash
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+ docker-image|quay.io/argoproj/argocd@v2.4.17 and bash@5.1-6ubuntu1
+
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.4.17
+ <span class="list-paths__item__arrow">›</span>
+ bash@5.1-6ubuntu1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
+ <h2 id="remediation">Remediation</h2>
+ <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/v2.4.17/redis_7.0.4-alpine.html b/docs/snyk/v2.4.17/redis_7.0.4-alpine.html
index bab2bddb8912d..291d217e31669 100644
--- a/docs/snyk/v2.4.17/redis_7.0.4-alpine.html
+++ b/docs/snyk/v2.4.17/redis_7.0.4-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:20:59 am</p>
+ <p class="timestamp">December 11th 2022, 12:21:12 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/v2.5.2/argocd-test.html b/docs/snyk/v2.5.2/argocd-test.html
deleted file mode 100644
index 7aedc6758f61e..0000000000000
--- a/docs/snyk/v2.5.2/argocd-test.html
+++ /dev/null
@@ -1,1000 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-
-<head>
- <meta http-equiv="Content-type" content="text/html; charset=utf-8">
- <meta http-equiv="Content-Language" content="en-us">
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
- <meta http-equiv="X-UA-Compatible" content="IE=edge">
- <title>Snyk test report</title>
- <meta name="description" content="5 known vulnerabilities found in 9 vulnerable dependency paths.">
- <base target="_blank">
- <link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
- sizes="194x194">
- <link rel="shortcut icon" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.ico">
- <style type="text/css">
-
- body {
- -moz-font-feature-settings: "pnum";
- -webkit-font-feature-settings: "pnum";
- font-variant-numeric: proportional-nums;
- display: flex;
- flex-direction: column;
- font-feature-settings: "pnum";
- font-size: 100%;
- line-height: 1.5;
- min-height: 100vh;
- -webkit-text-size-adjust: 100%;
- margin: 0;
- padding: 0;
- background-color: #F5F5F5;
- font-family: 'Arial', 'Helvetica', Calibri, sans-serif;
- }
-
- h1,
- h2,
- h3,
- h4,
- h5,
- h6 {
- font-weight: 500;
- }
-
- a,
- a:link,
- a:visited {
- border-bottom: 1px solid #4b45a9;
- text-decoration: none;
- color: #4b45a9;
- }
-
- a:hover,
- a:focus,
- a:active {
- border-bottom: 1px solid #4b45a9;
- }
-
- hr {
- border: none;
- margin: 1em 0;
- border-top: 1px solid #c5c5c5;
- }
-
- ul {
- padding: 0 1em;
- margin: 1em 0;
- }
-
- code {
- background-color: #EEE;
- color: #333;
- padding: 0.25em 0.5em;
- border-radius: 0.25em;
- }
-
- pre {
- background-color: #333;
- font-family: monospace;
- padding: 0.5em 1em 0.75em;
- border-radius: 0.25em;
- font-size: 14px;
- }
-
- pre code {
- padding: 0;
- background-color: transparent;
- color: #fff;
- }
-
- a code {
- border-radius: .125rem .125rem 0 0;
- padding-bottom: 0;
- color: #4b45a9;
- }
-
- a[href^="http://"]:after,
- a[href^="https://"]:after {
- background-image: linear-gradient(transparent,transparent),url("data:image/svg+xml,%3Csvg%20xmlns%3D%22http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%22%20viewBox%3D%220%200%20112%20109%22%3E%3Cg%20id%3D%22Page-1%22%20fill%3D%22none%22%20fill-rule%3D%22evenodd%22%3E%3Cg%20id%3D%22link-external%22%3E%3Cg%20id%3D%22arrow%22%3E%3Cpath%20id%3D%22Line%22%20stroke%3D%22%234B45A9%22%20stroke-width%3D%2215%22%20d%3D%22M88.5%2021l-43%2042.5%22%20stroke-linecap%3D%22square%22%2F%3E%3Cpath%20id%3D%22Triangle%22%20fill%3D%22%234B45A9%22%20d%3D%22M111.2%200v50L61%200z%22%2F%3E%3C%2Fg%3E%3Cpath%20id%3D%22square%22%20fill%3D%22%234B45A9%22%20d%3D%22M66%2015H0v94h94V44L79%2059v35H15V30h36z%22%2F%3E%3C%2Fg%3E%3C%2Fg%3E%3C%2Fsvg%3E");
- background-repeat: no-repeat;
- background-size: .75rem;
- content: "";
- display: inline-block;
- height: .75rem;
- margin-left: .25rem;
- width: .75rem;
- }
-
-
- /* Layout */
-
- [class*=layout-container] {
- margin: 0 auto;
- max-width: 71.25em;
- padding: 1.9em 1.3em;
- position: relative;
- }
- .layout-container--short {
- padding-top: 0;
- padding-bottom: 0;
- max-width: 48.75em;
- }
-
- .layout-container--short:after {
- display: block;
- content: "";
- clear: both;
- }
-
- /* Header */
-
- .header {
- padding-bottom: 1px;
- }
-
- .paths {
- margin-left: 8px;
- }
- .header-wrap {
- display: flex;
- flex-direction: row;
- justify-content: space-between;
- padding-top: 2em;
- }
- .project__header {
- background-color: #4b45a9;
- color: #fff;
- margin-bottom: -1px;
- padding-top: 1em;
- padding-bottom: 0.25em;
- border-bottom: 2px solid #BBB;
- }
-
- .project__header__title {
- overflow-wrap: break-word;
- word-wrap: break-word;
- word-break: break-all;
- margin-bottom: .1em;
- margin-top: 0;
- }
-
- .timestamp {
- float: right;
- clear: none;
- margin-bottom: 0;
- }
-
- .meta-counts {
- clear: both;
- display: block;
- flex-wrap: wrap;
- justify-content: space-between;
- margin: 0 0 1.5em;
- color: #fff;
- clear: both;
- font-size: 1.1em;
- }
-
- .meta-count {
- display: block;
- flex-basis: 100%;
- margin: 0 1em 1em 0;
- float: left;
- padding-right: 1em;
- border-right: 2px solid #fff;
- }
-
- .meta-count:last-child {
- border-right: 0;
- padding-right: 0;
- margin-right: 0;
- }
-
- /* Card */
-
- .card {
- background-color: #fff;
- border: 1px solid #c5c5c5;
- border-radius: .25rem;
- margin: 0 0 2em 0;
- position: relative;
- min-height: 40px;
- padding: 1.5em;
- }
-
- .card .label {
- background-color: #767676;
- border: 2px solid #767676;
- color: white;
- padding: 0.25rem 0.75rem;
- font-size: 0.875rem;
- text-transform: uppercase;
- display: inline-block;
- margin: 0;
- border-radius: 0.25rem;
- }
-
- .card .label__text {
- vertical-align: text-top;
- font-weight: bold;
- }
-
- .card .label--critical {
- background-color: #AB1A1A;
- border-color: #AB1A1A;
- }
-
- .card .label--high {
- background-color: #CE5019;
- border-color: #CE5019;
- }
-
- .card .label--medium {
- background-color: #D68000;
- border-color: #D68000;
- }
-
- .card .label--low {
- background-color: #88879E;
- border-color: #88879E;
- }
-
- .severity--low {
- border-color: #88879E;
- }
-
- .severity--medium {
- border-color: #D68000;
- }
-
- .severity--high {
- border-color: #CE5019;
- }
-
- .severity--critical {
- border-color: #AB1A1A;
- }
-
- .card--vuln {
- padding-top: 4em;
- }
-
- .card--vuln .label {
- left: 0;
- position: absolute;
- top: 1.1em;
- padding-left: 1.9em;
- padding-right: 1.9em;
- border-radius: 0 0.25rem 0.25rem 0;
- }
-
- .card--vuln .card__section h2 {
- font-size: 22px;
- margin-bottom: 0.5em;
- }
-
- .card--vuln .card__section p {
- margin: 0 0 0.5em 0;
- }
-
- .card--vuln .card__meta {
- padding: 0 0 0 1em;
- margin: 0;
- font-size: 1.1em;
- }
-
- .card .card__meta__paths {
- font-size: 0.9em;
- }
-
- .card--vuln .card__title {
- font-size: 28px;
- margin-top: 0;
- }
-
- .card--vuln .card__cta p {
- margin: 0;
- text-align: right;
- }
-
- .source-panel {
- clear: both;
- display: flex;
- justify-content: flex-start;
- flex-direction: column;
- align-items: flex-start;
- padding: 0.5em 0;
- width: fit-content;
- }
-
-
-
- </style>
- <style type="text/css">
- .metatable {
- text-size-adjust: 100%;
- -webkit-font-smoothing: antialiased;
- -webkit-box-direction: normal;
- color: inherit;
- font-feature-settings: "pnum";
- box-sizing: border-box;
- background: transparent;
- border: 0;
- font: inherit;
- font-size: 100%;
- margin: 0;
- outline: none;
- padding: 0;
- text-align: left;
- text-decoration: none;
- vertical-align: baseline;
- z-index: auto;
- margin-top: 12px;
- border-collapse: collapse;
- border-spacing: 0;
- font-variant-numeric: tabular-nums;
- max-width: 51.75em;
- }
-
- tbody {
- text-size-adjust: 100%;
- -webkit-font-smoothing: antialiased;
- -webkit-box-direction: normal;
- color: inherit;
- font-feature-settings: "pnum";
- border-collapse: collapse;
- border-spacing: 0;
- box-sizing: border-box;
- background: transparent;
- border: 0;
- font: inherit;
- font-size: 100%;
- margin: 0;
- outline: none;
- padding: 0;
- text-align: left;
- text-decoration: none;
- vertical-align: baseline;
- z-index: auto;
- display: flex;
- flex-wrap: wrap;
- }
-
- .meta-row {
- text-size-adjust: 100%;
- -webkit-font-smoothing: antialiased;
- -webkit-box-direction: normal;
- color: inherit;
- font-feature-settings: "pnum";
- border-collapse: collapse;
- border-spacing: 0;
- box-sizing: border-box;
- background: transparent;
- border: 0;
- font: inherit;
- font-size: 100%;
- outline: none;
- text-align: left;
- text-decoration: none;
- vertical-align: baseline;
- z-index: auto;
- display: flex;
- align-items: start;
- border-top: 1px solid #d3d3d9;
- padding: 8px 0 0 0;
- border-bottom: none;
- margin: 8px;
- width: 47.75%;
- }
-
- .meta-row-label {
- text-size-adjust: 100%;
- -webkit-font-smoothing: antialiased;
- -webkit-box-direction: normal;
- font-feature-settings: "pnum";
- border-collapse: collapse;
- border-spacing: 0;
- color: #4c4a73;
- box-sizing: border-box;
- background: transparent;
- border: 0;
- font: inherit;
- margin: 0;
- outline: none;
- text-decoration: none;
- z-index: auto;
- align-self: start;
- flex: 1;
- font-size: 1rem;
- line-height: 1.5rem;
- padding: 0;
- text-align: left;
- vertical-align: top;
- text-transform: none;
- letter-spacing: 0;
- }
-
- .meta-row-value {
- text-size-adjust: 100%;
- -webkit-font-smoothing: antialiased;
- -webkit-box-direction: normal;
- color: inherit;
- font-feature-settings: "pnum";
- border-collapse: collapse;
- border-spacing: 0;
- word-break: break-word;
- box-sizing: border-box;
- background: transparent;
- border: 0;
- font: inherit;
- font-size: 100%;
- margin: 0;
- outline: none;
- padding: 0;
- text-align: right;
- text-decoration: none;
- vertical-align: baseline;
- z-index: auto;
- }
- </style>
-</head>
-
-<body class="section-projects">
- <main class="layout-stacked">
- <div class="layout-stacked__header header">
- <header class="project__header">
- <div class="layout-container">
- <a class="brand" href="https://snyk.io" title="Snyk">
- <svg width="68px" height="35px" viewBox="0 0 68 35" version="1.1" xmlns="http://www.w3.org/2000/svg" role="img">
- <title>Snyk - Open Source Security</title>
- <g stroke="none" stroke-width="1" fill="none" fill-rule="evenodd">
- <g fill="#fff">
- <path d="M5.732,27.278 C3.445,27.278 1.589,26.885 0,26.124 L0.483,22.472 C2.163,23.296 4.056,23.689 5.643,23.689 C6.801,23.689 7.563,23.295 7.563,22.599 C7.563,20.594 0.333,21.076 0.333,15.839 C0.333,12.491 3.407,10.729 7.259,10.729 C9.179,10.729 11.161,11.249 12.444,11.704 L11.924,15.294 C10.577,14.774 8.747,14.291 7.222,14.291 C6.282,14.291 5.518,14.621 5.518,15.231 C5.518,17.208 12.903,16.815 12.903,21.925 C12.903,25.325 9.877,27.277 5.733,27.277 L5.732,27.278 Z M25.726,26.936 L25.726,17.894 C25.726,15.827 24.811,14.85 23.069,14.85 C22.219,14.85 21.329,15.09 20.719,15.46 L20.719,26.936 L15.352,26.936 L15.352,11.262 L20.602,10.83 L20.474,13.392 L20.652,13.392 C21.784,11.87 23.702,10.716 25.992,10.716 C28.736,10.716 31.112,12.416 31.112,16.436 L31.112,26.936 L25.724,26.936 L25.726,26.936 Z M61.175,26.936 L56.879,19.479 L56.446,19.479 L56.446,26.935 L51.082,26.935 L51.082,8.37 L56.447,0 L56.447,17.323 C57.515,16.017 61.112,11.059 61.112,11.059 L67.732,11.059 L61.454,17.689 L67.949,26.95 L61.175,26.95 L61.175,26.938 L61.175,26.936 Z M44.13,11.11 L41.93,18.262 C41.5,19.606 41.08,22.079 41.08,22.079 C41.08,22.079 40.75,19.516 40.292,18.172 L37.94,11.108 L31.928,11.108 L38.462,26.935 C37.572,29.04 36.199,30.815 34.369,30.815 C34.039,30.815 33.709,30.802 33.389,30.765 L31.255,34.061 C31.928,34.441 33.212,34.835 34.737,34.835 C38.703,34.835 41.359,31.627 43.215,26.885 L49.443,11.108 L44.132,11.108 L44.13,11.11 Z"></path>
- </g>
- </g>
- </svg>
- </a>
- <div class="header-wrap">
- <h1 class="project__header__title">Snyk test report</h1>
-
- <p class="timestamp">November 13th 2022, 12:18:10 am</p>
- </div>
- <div class="source-panel">
- <span>Scanned the following paths:</span>
- <ul>
- <li class="paths">/argo-cd/argoproj/argo-cd/v2 (gomodules)</li><li class="paths">/argo-cd (yarn)</li>
- </ul>
- </div>
-
- <div class="meta-counts">
- <div class="meta-count"><span>5</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>9 vulnerable dependency paths</span></div>
- <div class="meta-count"><span>1721</span> <span>dependencies</span></div>
- </div><!-- .meta-counts -->
- </div><!-- .layout-container--short -->
- </header><!-- .project__header -->
- </div><!-- .layout-stacked__header -->
-
- <div class="layout-container" style="padding-top: 35px;">
- <div class="cards--vuln filter--patch filter--ignore">
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Server-side Request Forgery (SSRF)</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: npm
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- parse-url
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- argo-cd-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- git-url-parse@11.6.0
- <span class="list-paths__item__arrow">›</span>
- git-up@4.0.5
- <span class="list-paths__item__arrow">›</span>
- parse-url@6.0.5
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://www.npmjs.org/package/parse-url">parse-url</a> is an An advanced url parser supporting git urls too.</p>
- <p>Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) due to improper detection of protocol, resource, and pathname fields. Exploiting this vulnerability results in bypassing protocol verification.</p>
- <h2 id="poc">PoC:</h2>
- <pre><code class="language-js">import parseUrl from "parse-url";
- import fetch from 'node-fetch';
- var parsed=parseUrl("http://nnnn@localhost:808:/?id=xss")
- if(parsed.resource=="localhost"){
- console.log("internal network access is blocked")
- }
- else{
- const response = await fetch('http://'+parsed.resource+parsed.pathname);
- console.log(response)
- }
- </code></pre>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>parse-url</code> to version 8.1.0 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/IonicaBizau/parse-url/commit/881ecb46e39286b0c2b3c32fe61dca9377176884">GitHub Commit</a></li>
- <li><a href="https://github.com/IonicaBizau/parse-url/pull/55">GitHub PR</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-JS-PARSEURL-3023021">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Improper Input Validation</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: npm
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- parse-url
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- argo-cd-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- git-url-parse@11.6.0
- <span class="list-paths__item__arrow">›</span>
- git-up@4.0.5
- <span class="list-paths__item__arrow">›</span>
- parse-url@6.0.5
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://www.npmjs.org/package/parse-url">parse-url</a> is an An advanced url parser supporting git urls too.</p>
- <p>Affected versions of this package are vulnerable to Improper Input Validation due to incorrect parsing of URLs. This allows the attacker to craft a malformed URL which can lead to a phishing attack.</p>
- <pre><code class="language-js">
- const parseUrl = require("parse-url");
- const Url = require("url");
-
- const express = require('express');
- const app = express();
-
- var url = "https://www.google.com:x@fakesite.com:x";
- parsed = parseUrl(url);
- console.log("[*]`parse-url` output: ")
- console.log(parsed);
-
- parsed2 = Url.parse(url);
- console.log("[*]`url` output: ")
- console.log(parsed2)
-
- app.get('/', (req, res) => {
- if (parsed.host == "www.google.com") {
- res.send("<a href=\'" + parsed2.href + "\'>CLICK ME!</a>")
- }
- })
-
- app.listen(8888,"0.0.0.0");
- </code></pre>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>parse-url</code> to version 8.1.0 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/IonicaBizau/parse-url/commit/881ecb46e39286b0c2b3c32fe61dca9377176884">GitHub Commit</a></li>
- <li><a href="https://github.com/IonicaBizau/parse-url/commit/9500430a3b9973bb1b5b2b9b319af2685ad272b3">GitHub Commit</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-JS-PARSEURL-3024398">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Regular Expression Denial of Service (ReDoS)</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: npm
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- minimatch
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- argo-cd-ui@1.0.0, redoc@2.0.0-rc.64 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- argo-cd-ui@1.0.0
- <span class="list-paths__item__arrow">›</span>
- redoc@2.0.0-rc.64
- <span class="list-paths__item__arrow">›</span>
- @redocly/openapi-core@1.0.0-beta.82
- <span class="list-paths__item__arrow">›</span>
- minimatch@3.0.4
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://www.npmjs.com/package/minimatch">minimatch</a> is a minimal matching utility.</p>
- <p>Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via the <code>braceExpand</code> function in <code>minimatch.js</code>.</p>
- <h2 id="details">Details</h2>
- <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.</p>
- <p>The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.</p>
- <p>Let’s take the following regular expression as an example:</p>
- <pre><code class="language-js">regex = /A(B|C+)+D/
- </code></pre>
- <p>This regular expression accomplishes the following:</p>
- <ul>
- <li><code>A</code> The string must start with the letter 'A'</li>
- <li><code>(B|C+)+</code> The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the <code>+</code> matches one or more times). The <code>+</code> at the end of this section states that we can look for one or more matches of this section.</li>
- <li><code>D</code> Finally, we ensure this section of the string ends with a 'D'</li>
- </ul>
- <p>The expression would match inputs such as <code>ABBD</code>, <code>ABCCCCD</code>, <code>ABCBCCCD</code> and <code>ACCCCCD</code></p>
- <p>It most cases, it doesn't take very long for a regex engine to find a match:</p>
- <pre><code class="language-bash">$ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
- 0.04s user 0.01s system 95% cpu 0.052 total
-
- $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
- 1.79s user 0.02s system 99% cpu 1.812 total
- </code></pre>
- <p>The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.</p>
- <p>Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as <em>catastrophic backtracking</em>.</p>
- <p>Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:</p>
- <ol>
- <li>CCC</li>
- <li>CC+C</li>
- <li>C+CC</li>
- <li>C+C+C.</li>
- </ol>
- <p>The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use <a href="https://regex101.com/debugger">RegEx 101 debugger</a> to see the engine has to take a total of 38 steps before it can determine the string doesn't match.</p>
- <p>From there, the number of steps the engine must use to validate a string just continues to grow.</p>
- <table>
- <thead>
- <tr>
- <th>String</th>
- <th align="right">Number of C's</th>
- <th align="right">Number of steps</th>
- </tr>
- </thead>
- <tbody><tr>
- <td>ACCCX</td>
- <td align="right">3</td>
- <td align="right">38</td>
- </tr>
- <tr>
- <td>ACCCCX</td>
- <td align="right">4</td>
- <td align="right">71</td>
- </tr>
- <tr>
- <td>ACCCCCX</td>
- <td align="right">5</td>
- <td align="right">136</td>
- </tr>
- <tr>
- <td>ACCCCCCCCCCCCCCX</td>
- <td align="right">14</td>
- <td align="right">65,553</td>
- </tr>
- </tbody></table>
- <p>By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.</p>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>minimatch</code> to version 3.0.5 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/isaacs/minimatch/commit/a8763f4388e51956be62dc6025cec1126beeb5e6">GitHub Commit</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Improper Input Validation</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: golang
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- go.mongodb.org/mongo-driver/bson/bsonrw
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- github.com/argoproj/argo-cd/v2@0.0.0, github.com/go-openapi/runtime/middleware@0.19.4 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/runtime/middleware@0.19.4
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/validate@0.19.5
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/strfmt@0.19.3
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson@1.1.2
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson/bsonrw@1.1.2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/runtime/middleware@0.19.4
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/validate@0.19.5
- <span class="list-paths__item__arrow">›</span>
- github.com/go-openapi/strfmt@0.19.3
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson@1.1.2
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson/bsoncodec@1.1.2
- <span class="list-paths__item__arrow">›</span>
- go.mongodb.org/mongo-driver/bson/bsonrw@1.1.2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://github.com/mongodb/mongo-go-driver">go.mongodb.org/mongo-driver/bson/bsonrw</a> is a The MongoDB supported driver for Go.</p>
- <p>Affected versions of this package are vulnerable to Improper Input Validation. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshalling Go objects into BSON. A malicious user could use a Go object with specific string to potentially inject additional fields into marshalled documents.</p>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>go.mongodb.org/mongo-driver/bson/bsonrw</code> to version 1.5.1 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/mongodb/mongo-go-driver/commit/3a89e6cde18d6ac5d38f39b54eaa8d4e321fd118">GitHub Commit</a></li>
- <li><a href="https://jira.mongodb.org/browse/GODRIVER-1923">GitHub Issue</a></li>
- <li><a href="https://github.com/mongodb/mongo-go-driver/releases/tag/v1.5.1">GitHub Release</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOMONGODBORGMONGODRIVERBSONBSONRW-1303393">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Insecure Randomness</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: golang
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- github.com/Masterminds/goutils
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- github.com/argoproj/argo-cd/v2@0.0.0, github.com/Masterminds/sprig@2.22.0 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/cmd@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- github.com/argoproj/argo-cd/v2@0.0.0
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/controller@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/sprig@2.22.0
- <span class="list-paths__item__arrow">›</span>
- github.com/Masterminds/goutils@1.1.0
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="overview">Overview</h2>
- <p><a href="https://pkg.go.dev/github.com/masterminds/goutils">github.com/masterminds/goutils</a> is a provides users with utility functions to manipulate strings in various ways.</p>
- <p>Affected versions of this package are vulnerable to Insecure Randomness via the <code>RandomAlphaNumeric(int)</code> and <code>CryptoRandomAlphaNumeric(int)</code> functions. Small values of <code>int</code> in the functions above will return a smaller subset of results than they should. For example, <code>RandomAlphaNumeric(1)</code> would always return a digit in the 0-9 range, while <code>RandomAlphaNumeric(4)</code> return around ~7 million of the ~13M possible permutations.</p>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>github.com/masterminds/goutils</code> to version 1.1.1 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="https://github.com/Masterminds/goutils/commit/f1923532a168b8203bfe956d8cd3b17ebece5982">GitHub Commit</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMASTERMINDSGOUTILS-1296313">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- </div><!-- cards -->
- </div>
- </main><!-- .layout-stacked__content -->
-</body>
-
-</html>
diff --git a/docs/snyk/v2.5.2/argocd-iac-install.html b/docs/snyk/v2.5.4/argocd-iac-install.html
similarity index 99%
rename from docs/snyk/v2.5.2/argocd-iac-install.html
rename to docs/snyk/v2.5.4/argocd-iac-install.html
index 1498a28d193d1..2a0c9ee17d981 100644
--- a/docs/snyk/v2.5.2/argocd-iac-install.html
+++ b/docs/snyk/v2.5.4/argocd-iac-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:19:49 am</p>
+ <p class="timestamp">December 11th 2022, 12:19:55 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -500,14 +500,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9318
+ </li>
</ul>
<hr/>
@@ -545,14 +546,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[4]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9395
+ </li>
</ul>
<hr/>
@@ -590,14 +592,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 12]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9423
+ </li>
</ul>
<hr/>
@@ -635,14 +638,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9467
+ </li>
</ul>
<hr/>
@@ -680,14 +684,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 13]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9449
+ </li>
</ul>
<hr/>
@@ -725,14 +730,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 14]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 9483
+ </li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.5.2/argocd-iac-namespace-install.html b/docs/snyk/v2.5.4/argocd-iac-namespace-install.html
similarity index 99%
rename from docs/snyk/v2.5.2/argocd-iac-namespace-install.html
rename to docs/snyk/v2.5.4/argocd-iac-namespace-install.html
index c74fded23b2c0..cb15012bf5b04 100644
--- a/docs/snyk/v2.5.2/argocd-iac-namespace-install.html
+++ b/docs/snyk/v2.5.4/argocd-iac-namespace-install.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:20:00 am</p>
+ <p class="timestamp">December 11th 2022, 12:20:08 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -500,14 +500,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 7]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 77
+ </li>
</ul>
<hr/>
@@ -545,14 +546,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 8]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[4]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 154
+ </li>
</ul>
<hr/>
@@ -590,14 +592,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 9]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 182
+ </li>
</ul>
<hr/>
@@ -635,14 +638,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[3]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 226
+ </li>
</ul>
<hr/>
@@ -680,14 +684,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 10]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[1]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 208
+ </li>
</ul>
<hr/>
@@ -725,14 +730,15 @@ <h2 class="card__title">Role with dangerous permissions</h2>
<li class="card__meta__item">Introduced through:
[DocId: 11]
<span class="list-paths__item__arrow">›</span>
- role
- <span class="list-paths__item__arrow">›</span>
rules[0]
<span class="list-paths__item__arrow">›</span>
resources
</li>
+ <li class="card__meta__item">
+ Line number: 242
+ </li>
</ul>
<hr/>
diff --git a/docs/snyk/v2.5.4/argocd-test.html b/docs/snyk/v2.5.4/argocd-test.html
new file mode 100644
index 0000000000000..4be4d1f969d5f
--- /dev/null
+++ b/docs/snyk/v2.5.4/argocd-test.html
@@ -0,0 +1,3396 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+ <meta http-equiv="Content-type" content="text/html; charset=utf-8">
+ <meta http-equiv="Content-Language" content="en-us">
+ <meta name="viewport" content="width=device-width, initial-scale=1.0">
+ <meta http-equiv="X-UA-Compatible" content="IE=edge">
+ <title>Snyk test report</title>
+ <meta name="description" content="8 known vulnerabilities found in 131 vulnerable dependency paths.">
+ <base target="_blank">
+ <link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
+ sizes="194x194">
+ <link rel="shortcut icon" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.ico">
+ <style type="text/css">
+
+ body {
+ -moz-font-feature-settings: "pnum";
+ -webkit-font-feature-settings: "pnum";
+ font-variant-numeric: proportional-nums;
+ display: flex;
+ flex-direction: column;
+ font-feature-settings: "pnum";
+ font-size: 100%;
+ line-height: 1.5;
+ min-height: 100vh;
+ -webkit-text-size-adjust: 100%;
+ margin: 0;
+ padding: 0;
+ background-color: #F5F5F5;
+ font-family: 'Arial', 'Helvetica', Calibri, sans-serif;
+ }
+
+ h1,
+ h2,
+ h3,
+ h4,
+ h5,
+ h6 {
+ font-weight: 500;
+ }
+
+ a,
+ a:link,
+ a:visited {
+ border-bottom: 1px solid #4b45a9;
+ text-decoration: none;
+ color: #4b45a9;
+ }
+
+ a:hover,
+ a:focus,
+ a:active {
+ border-bottom: 1px solid #4b45a9;
+ }
+
+ hr {
+ border: none;
+ margin: 1em 0;
+ border-top: 1px solid #c5c5c5;
+ }
+
+ ul {
+ padding: 0 1em;
+ margin: 1em 0;
+ }
+
+ code {
+ background-color: #EEE;
+ color: #333;
+ padding: 0.25em 0.5em;
+ border-radius: 0.25em;
+ }
+
+ pre {
+ background-color: #333;
+ font-family: monospace;
+ padding: 0.5em 1em 0.75em;
+ border-radius: 0.25em;
+ font-size: 14px;
+ }
+
+ pre code {
+ padding: 0;
+ background-color: transparent;
+ color: #fff;
+ }
+
+ a code {
+ border-radius: .125rem .125rem 0 0;
+ padding-bottom: 0;
+ color: #4b45a9;
+ }
+
+ a[href^="http://"]:after,
+ a[href^="https://"]:after {
+ background-image: linear-gradient(transparent,transparent),url("data:image/svg+xml,%3Csvg%20xmlns%3D%22http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%22%20viewBox%3D%220%200%20112%20109%22%3E%3Cg%20id%3D%22Page-1%22%20fill%3D%22none%22%20fill-rule%3D%22evenodd%22%3E%3Cg%20id%3D%22link-external%22%3E%3Cg%20id%3D%22arrow%22%3E%3Cpath%20id%3D%22Line%22%20stroke%3D%22%234B45A9%22%20stroke-width%3D%2215%22%20d%3D%22M88.5%2021l-43%2042.5%22%20stroke-linecap%3D%22square%22%2F%3E%3Cpath%20id%3D%22Triangle%22%20fill%3D%22%234B45A9%22%20d%3D%22M111.2%200v50L61%200z%22%2F%3E%3C%2Fg%3E%3Cpath%20id%3D%22square%22%20fill%3D%22%234B45A9%22%20d%3D%22M66%2015H0v94h94V44L79%2059v35H15V30h36z%22%2F%3E%3C%2Fg%3E%3C%2Fg%3E%3C%2Fsvg%3E");
+ background-repeat: no-repeat;
+ background-size: .75rem;
+ content: "";
+ display: inline-block;
+ height: .75rem;
+ margin-left: .25rem;
+ width: .75rem;
+ }
+
+
+ /* Layout */
+
+ [class*=layout-container] {
+ margin: 0 auto;
+ max-width: 71.25em;
+ padding: 1.9em 1.3em;
+ position: relative;
+ }
+ .layout-container--short {
+ padding-top: 0;
+ padding-bottom: 0;
+ max-width: 48.75em;
+ }
+
+ .layout-container--short:after {
+ display: block;
+ content: "";
+ clear: both;
+ }
+
+ /* Header */
+
+ .header {
+ padding-bottom: 1px;
+ }
+
+ .paths {
+ margin-left: 8px;
+ }
+ .header-wrap {
+ display: flex;
+ flex-direction: row;
+ justify-content: space-between;
+ padding-top: 2em;
+ }
+ .project__header {
+ background-color: #4b45a9;
+ color: #fff;
+ margin-bottom: -1px;
+ padding-top: 1em;
+ padding-bottom: 0.25em;
+ border-bottom: 2px solid #BBB;
+ }
+
+ .project__header__title {
+ overflow-wrap: break-word;
+ word-wrap: break-word;
+ word-break: break-all;
+ margin-bottom: .1em;
+ margin-top: 0;
+ }
+
+ .timestamp {
+ float: right;
+ clear: none;
+ margin-bottom: 0;
+ }
+
+ .meta-counts {
+ clear: both;
+ display: block;
+ flex-wrap: wrap;
+ justify-content: space-between;
+ margin: 0 0 1.5em;
+ color: #fff;
+ clear: both;
+ font-size: 1.1em;
+ }
+
+ .meta-count {
+ display: block;
+ flex-basis: 100%;
+ margin: 0 1em 1em 0;
+ float: left;
+ padding-right: 1em;
+ border-right: 2px solid #fff;
+ }
+
+ .meta-count:last-child {
+ border-right: 0;
+ padding-right: 0;
+ margin-right: 0;
+ }
+
+ /* Card */
+
+ .card {
+ background-color: #fff;
+ border: 1px solid #c5c5c5;
+ border-radius: .25rem;
+ margin: 0 0 2em 0;
+ position: relative;
+ min-height: 40px;
+ padding: 1.5em;
+ }
+
+ .card .label {
+ background-color: #767676;
+ border: 2px solid #767676;
+ color: white;
+ padding: 0.25rem 0.75rem;
+ font-size: 0.875rem;
+ text-transform: uppercase;
+ display: inline-block;
+ margin: 0;
+ border-radius: 0.25rem;
+ }
+
+ .card .label__text {
+ vertical-align: text-top;
+ font-weight: bold;
+ }
+
+ .card .label--critical {
+ background-color: #AB1A1A;
+ border-color: #AB1A1A;
+ }
+
+ .card .label--high {
+ background-color: #CE5019;
+ border-color: #CE5019;
+ }
+
+ .card .label--medium {
+ background-color: #D68000;
+ border-color: #D68000;
+ }
+
+ .card .label--low {
+ background-color: #88879E;
+ border-color: #88879E;
+ }
+
+ .severity--low {
+ border-color: #88879E;
+ }
+
+ .severity--medium {
+ border-color: #D68000;
+ }
+
+ .severity--high {
+ border-color: #CE5019;
+ }
+
+ .severity--critical {
+ border-color: #AB1A1A;
+ }
+
+ .card--vuln {
+ padding-top: 4em;
+ }
+
+ .card--vuln .label {
+ left: 0;
+ position: absolute;
+ top: 1.1em;
+ padding-left: 1.9em;
+ padding-right: 1.9em;
+ border-radius: 0 0.25rem 0.25rem 0;
+ }
+
+ .card--vuln .card__section h2 {
+ font-size: 22px;
+ margin-bottom: 0.5em;
+ }
+
+ .card--vuln .card__section p {
+ margin: 0 0 0.5em 0;
+ }
+
+ .card--vuln .card__meta {
+ padding: 0 0 0 1em;
+ margin: 0;
+ font-size: 1.1em;
+ }
+
+ .card .card__meta__paths {
+ font-size: 0.9em;
+ }
+
+ .card--vuln .card__title {
+ font-size: 28px;
+ margin-top: 0;
+ }
+
+ .card--vuln .card__cta p {
+ margin: 0;
+ text-align: right;
+ }
+
+ .source-panel {
+ clear: both;
+ display: flex;
+ justify-content: flex-start;
+ flex-direction: column;
+ align-items: flex-start;
+ padding: 0.5em 0;
+ width: fit-content;
+ }
+
+
+
+ </style>
+ <style type="text/css">
+ .metatable {
+ text-size-adjust: 100%;
+ -webkit-font-smoothing: antialiased;
+ -webkit-box-direction: normal;
+ color: inherit;
+ font-feature-settings: "pnum";
+ box-sizing: border-box;
+ background: transparent;
+ border: 0;
+ font: inherit;
+ font-size: 100%;
+ margin: 0;
+ outline: none;
+ padding: 0;
+ text-align: left;
+ text-decoration: none;
+ vertical-align: baseline;
+ z-index: auto;
+ margin-top: 12px;
+ border-collapse: collapse;
+ border-spacing: 0;
+ font-variant-numeric: tabular-nums;
+ max-width: 51.75em;
+ }
+
+ tbody {
+ text-size-adjust: 100%;
+ -webkit-font-smoothing: antialiased;
+ -webkit-box-direction: normal;
+ color: inherit;
+ font-feature-settings: "pnum";
+ border-collapse: collapse;
+ border-spacing: 0;
+ box-sizing: border-box;
+ background: transparent;
+ border: 0;
+ font: inherit;
+ font-size: 100%;
+ margin: 0;
+ outline: none;
+ padding: 0;
+ text-align: left;
+ text-decoration: none;
+ vertical-align: baseline;
+ z-index: auto;
+ display: flex;
+ flex-wrap: wrap;
+ }
+
+ .meta-row {
+ text-size-adjust: 100%;
+ -webkit-font-smoothing: antialiased;
+ -webkit-box-direction: normal;
+ color: inherit;
+ font-feature-settings: "pnum";
+ border-collapse: collapse;
+ border-spacing: 0;
+ box-sizing: border-box;
+ background: transparent;
+ border: 0;
+ font: inherit;
+ font-size: 100%;
+ outline: none;
+ text-align: left;
+ text-decoration: none;
+ vertical-align: baseline;
+ z-index: auto;
+ display: flex;
+ align-items: start;
+ border-top: 1px solid #d3d3d9;
+ padding: 8px 0 0 0;
+ border-bottom: none;
+ margin: 8px;
+ width: 47.75%;
+ }
+
+ .meta-row-label {
+ text-size-adjust: 100%;
+ -webkit-font-smoothing: antialiased;
+ -webkit-box-direction: normal;
+ font-feature-settings: "pnum";
+ border-collapse: collapse;
+ border-spacing: 0;
+ color: #4c4a73;
+ box-sizing: border-box;
+ background: transparent;
+ border: 0;
+ font: inherit;
+ margin: 0;
+ outline: none;
+ text-decoration: none;
+ z-index: auto;
+ align-self: start;
+ flex: 1;
+ font-size: 1rem;
+ line-height: 1.5rem;
+ padding: 0;
+ text-align: left;
+ vertical-align: top;
+ text-transform: none;
+ letter-spacing: 0;
+ }
+
+ .meta-row-value {
+ text-size-adjust: 100%;
+ -webkit-font-smoothing: antialiased;
+ -webkit-box-direction: normal;
+ color: inherit;
+ font-feature-settings: "pnum";
+ border-collapse: collapse;
+ border-spacing: 0;
+ word-break: break-word;
+ box-sizing: border-box;
+ background: transparent;
+ border: 0;
+ font: inherit;
+ font-size: 100%;
+ margin: 0;
+ outline: none;
+ padding: 0;
+ text-align: right;
+ text-decoration: none;
+ vertical-align: baseline;
+ z-index: auto;
+ }
+ </style>
+</head>
+
+<body class="section-projects">
+ <main class="layout-stacked">
+ <div class="layout-stacked__header header">
+ <header class="project__header">
+ <div class="layout-container">
+ <a class="brand" href="https://snyk.io" title="Snyk">
+ <svg width="68px" height="35px" viewBox="0 0 68 35" version="1.1" xmlns="http://www.w3.org/2000/svg" role="img">
+ <title>Snyk - Open Source Security</title>
+ <g stroke="none" stroke-width="1" fill="none" fill-rule="evenodd">
+ <g fill="#fff">
+ <path d="M5.732,27.278 C3.445,27.278 1.589,26.885 0,26.124 L0.483,22.472 C2.163,23.296 4.056,23.689 5.643,23.689 C6.801,23.689 7.563,23.295 7.563,22.599 C7.563,20.594 0.333,21.076 0.333,15.839 C0.333,12.491 3.407,10.729 7.259,10.729 C9.179,10.729 11.161,11.249 12.444,11.704 L11.924,15.294 C10.577,14.774 8.747,14.291 7.222,14.291 C6.282,14.291 5.518,14.621 5.518,15.231 C5.518,17.208 12.903,16.815 12.903,21.925 C12.903,25.325 9.877,27.277 5.733,27.277 L5.732,27.278 Z M25.726,26.936 L25.726,17.894 C25.726,15.827 24.811,14.85 23.069,14.85 C22.219,14.85 21.329,15.09 20.719,15.46 L20.719,26.936 L15.352,26.936 L15.352,11.262 L20.602,10.83 L20.474,13.392 L20.652,13.392 C21.784,11.87 23.702,10.716 25.992,10.716 C28.736,10.716 31.112,12.416 31.112,16.436 L31.112,26.936 L25.724,26.936 L25.726,26.936 Z M61.175,26.936 L56.879,19.479 L56.446,19.479 L56.446,26.935 L51.082,26.935 L51.082,8.37 L56.447,0 L56.447,17.323 C57.515,16.017 61.112,11.059 61.112,11.059 L67.732,11.059 L61.454,17.689 L67.949,26.95 L61.175,26.95 L61.175,26.938 L61.175,26.936 Z M44.13,11.11 L41.93,18.262 C41.5,19.606 41.08,22.079 41.08,22.079 C41.08,22.079 40.75,19.516 40.292,18.172 L37.94,11.108 L31.928,11.108 L38.462,26.935 C37.572,29.04 36.199,30.815 34.369,30.815 C34.039,30.815 33.709,30.802 33.389,30.765 L31.255,34.061 C31.928,34.441 33.212,34.835 34.737,34.835 C38.703,34.835 41.359,31.627 43.215,26.885 L49.443,11.108 L44.132,11.108 L44.13,11.11 Z"></path>
+ </g>
+ </g>
+ </svg>
+ </a>
+ <div class="header-wrap">
+ <h1 class="project__header__title">Snyk test report</h1>
+
+ <p class="timestamp">December 11th 2022, 12:18:12 am</p>
+ </div>
+ <div class="source-panel">
+ <span>Scanned the following paths:</span>
+ <ul>
+ <li class="paths">/argo-cd/argoproj/argo-cd/v2 (gomodules)</li><li class="paths">/argo-cd (yarn)</li>
+ </ul>
+ </div>
+
+ <div class="meta-counts">
+ <div class="meta-count"><span>8</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>131 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>1721</span> <span>dependencies</span></div>
+ </div><!-- .meta-counts -->
+ </div><!-- .layout-container--short -->
+ </header><!-- .project__header -->
+ </div><!-- .layout-stacked__header -->
+
+ <div class="layout-container" style="padding-top: 35px;">
+ <div class="cards--vuln filter--patch filter--ignore">
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Prototype Poisoning</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ qs
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.6.0
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-path@4.0.4
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.10.1
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ superagent@7.1.6
+ <span class="list-paths__item__arrow">›</span>
+ formidable@2.0.1
+ <span class="list-paths__item__arrow">›</span>
+ qs@6.9.3
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.com/package/qs">qs</a> is a querystring parser that supports nesting and arrays, with a depth limit.</p>
+ <p>Affected versions of this package are vulnerable to Prototype Poisoning which allows attackers to cause a Node process to hang, processing an Array object whose prototype has been replaced by one with an excessive length value.</p>
+ <p><strong>Note:</strong> In many typical Express use cases, an unauthenticated remote attacker can place the attack payload in the query string of the URL that is used to visit the application, such as <code>a[__proto__]=b&a[__proto__]&a[length]=100000000</code>.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>qs</code> to version 6.2.4, 6.3.3, 6.4.1, 6.5.3, 6.6.1, 6.7.3, 6.8.3, 6.9.7, 6.10.3 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/ljharb/qs/pull/428">GitHub PR</a></li>
+ <li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2150323">RedHat Bugzilla Bug</a></li>
+ <li><a href="https://github.com/n8tz/CVE-2022-24999">Researcher Advisory</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-QS-3153490">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--high" data-snyk-test="high">
+ <h2 class="card__title">Denial of Service (DoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--high">
+ <span class="label__text">high severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ golang.org/x/net/http2
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, k8s.io/client-go/rest@0.24.2 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/soheilhy/cmux@0.1.5
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#36c59d8fafe0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/record@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/auth@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/retry@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-prometheus@1.2.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/improbable-eng/grpc-web/go/grpcweb@#16092bd1d58a
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@0.31.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc@1.6.3
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/rbac/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/equality@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/dynamic@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/pkg/kubeclientmetrics@#36c59d8fafe0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/azure@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/gcp@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/plugin/pkg/client/auth/oidc@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/reflection/grpc_reflection_v1alpha@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/health/grpc_health_v1@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/testing/controlplane@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/auth@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/managedfields@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/resource@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/testing@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/record@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/reference@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/pkg/apis/clientauthentication/v1beta1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/pkg/apis/clientauthentication@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/scheme@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/util/retry@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/errors@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/resource@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/health@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/podutils@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/api/validation@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/validation@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/portforward@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/api/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/fake@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/testing@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags/logrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus/ctxlogrus@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/grpc-ecosystem/go-grpc-middleware/tags@1.3.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ google.golang.org/grpc/internal/transport@1.45.0
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/cache@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/cache@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/listers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers/core/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/informers@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/pager@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/term@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/remotecommand@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport/spdy@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/syncwaves@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/manager@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/internal/metrics@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/metrics@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/cache@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/ignore@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/sync/common@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubectl/pkg/util/openapi@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/handler@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/diff@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/kubernetes/scheme@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/envtest@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/webhook/conversion@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/tools/clientcmd/api/latest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/gitops-engine/pkg/utils/kube/scheme@#98ccd3d43fd9
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/storage/install@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/storage/v1beta1@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/storage@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/kubernetes/pkg/apis/core@1.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/apis/meta/v1@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/watch@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/cache@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source/internal@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/predicate@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/handler@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/source/internal@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/predicate@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/event@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/internal/objectutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.11.0
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/restmapper@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/discovery@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/rest@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/client-go/transport@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ k8s.io/apimachinery/pkg/util/net@0.24.2
+ <span class="list-paths__item__arrow">›</span>
+ golang.org/x/net/http2@#9d032be2e588
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/golang.org/x/net@v0.0.0-20211209100829-84cba5454caf/http2#section-readme">golang.org/x/net/http2</a> is a work-in-progress HTTP/2 implementation for Go.</p>
+ <p>Affected versions of this package are vulnerable to Denial of Service (DoS) due to improper checks and limitations for the number of entries in the cache, which can allow an attacker to consume unbounded amounts of memory by sending a small number of very large keys.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.</p>
+ <p>Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.</p>
+ <p>One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.</p>
+ <p>When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.</p>
+ <p>Two common types of DoS vulnerabilities:</p>
+ <ul>
+ <li><p>High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, <a href="SNYK-JAVA-COMMONSFILEUPLOAD-30082">commons-fileupload:commons-fileupload</a>.</p>
+ </li>
+ <li><p>Crash - An attacker sending crafted requests that could cause the system to crash. For Example, <a href="https://snyk.io/vuln/npm:ws:20171108">npm <code>ws</code> package</a></p>
+ </li>
+ </ul>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>golang.org/x/net/http2</code> to version 0.4.0 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://cs.opensource.google/go/x/net/+/1e63c2f08a10a150fa02c50ece89b340ae64efe4">Fix Commit</a></li>
+ <li><a href="https://go-review.googlesource.com/c/net/+/455635">Fix Commit</a></li>
+ <li><a href="https://github.com/golang/net/commit/1e63c2f08a10a150fa02c50ece89b340ae64efe4">GitHub Commit</a></li>
+ <li><a href="https://github.com/golang/go/issues/56350">GitHub Issue</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOLANGORGXNETHTTP2-3160322">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Server-side Request Forgery (SSRF)</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ parse-url
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.6.0
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.org/package/parse-url">parse-url</a> is an An advanced url parser supporting git urls too.</p>
+ <p>Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) due to improper detection of protocol, resource, and pathname fields. Exploiting this vulnerability results in bypassing protocol verification.</p>
+ <h2 id="poc">PoC:</h2>
+ <pre><code class="language-js">import parseUrl from "parse-url";
+ import fetch from 'node-fetch';
+ var parsed=parseUrl("http://nnnn@localhost:808:/?id=xss")
+ if(parsed.resource=="localhost"){
+ console.log("internal network access is blocked")
+ }
+ else{
+ const response = await fetch('http://'+parsed.resource+parsed.pathname);
+ console.log(response)
+ }
+ </code></pre>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>parse-url</code> to version 8.1.0 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/IonicaBizau/parse-url/commit/881ecb46e39286b0c2b3c32fe61dca9377176884">GitHub Commit</a></li>
+ <li><a href="https://github.com/IonicaBizau/parse-url/pull/55">GitHub PR</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-PARSEURL-3023021">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Improper Input Validation</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ parse-url
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, git-url-parse@11.6.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ git-url-parse@11.6.0
+ <span class="list-paths__item__arrow">›</span>
+ git-up@4.0.5
+ <span class="list-paths__item__arrow">›</span>
+ parse-url@6.0.5
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.org/package/parse-url">parse-url</a> is an An advanced url parser supporting git urls too.</p>
+ <p>Affected versions of this package are vulnerable to Improper Input Validation due to incorrect parsing of URLs. This allows the attacker to craft a malformed URL which can lead to a phishing attack.</p>
+ <pre><code class="language-js">
+ const parseUrl = require("parse-url");
+ const Url = require("url");
+
+ const express = require('express');
+ const app = express();
+
+ var url = "https://www.google.com:x@fakesite.com:x";
+ parsed = parseUrl(url);
+ console.log("[*]`parse-url` output: ")
+ console.log(parsed);
+
+ parsed2 = Url.parse(url);
+ console.log("[*]`url` output: ")
+ console.log(parsed2)
+
+ app.get('/', (req, res) => {
+ if (parsed.host == "www.google.com") {
+ res.send("<a href=\'" + parsed2.href + "\'>CLICK ME!</a>")
+ }
+ })
+
+ app.listen(8888,"0.0.0.0");
+ </code></pre>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>parse-url</code> to version 8.1.0 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/IonicaBizau/parse-url/commit/881ecb46e39286b0c2b3c32fe61dca9377176884">GitHub Commit</a></li>
+ <li><a href="https://github.com/IonicaBizau/parse-url/commit/9500430a3b9973bb1b5b2b9b319af2685ad272b3">GitHub Commit</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-PARSEURL-3024398">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Regular Expression Denial of Service (ReDoS)</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: npm
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ minimatch
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ argo-cd-ui@1.0.0, redoc@2.0.0-rc.64 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ argo-cd-ui@1.0.0
+ <span class="list-paths__item__arrow">›</span>
+ redoc@2.0.0-rc.64
+ <span class="list-paths__item__arrow">›</span>
+ @redocly/openapi-core@1.0.0-beta.82
+ <span class="list-paths__item__arrow">›</span>
+ minimatch@3.0.4
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://www.npmjs.com/package/minimatch">minimatch</a> is a minimal matching utility.</p>
+ <p>Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via the <code>braceExpand</code> function in <code>minimatch.js</code>.</p>
+ <h2 id="details">Details</h2>
+ <p>Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.</p>
+ <p>The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.</p>
+ <p>Let’s take the following regular expression as an example:</p>
+ <pre><code class="language-js">regex = /A(B|C+)+D/
+ </code></pre>
+ <p>This regular expression accomplishes the following:</p>
+ <ul>
+ <li><code>A</code> The string must start with the letter 'A'</li>
+ <li><code>(B|C+)+</code> The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the <code>+</code> matches one or more times). The <code>+</code> at the end of this section states that we can look for one or more matches of this section.</li>
+ <li><code>D</code> Finally, we ensure this section of the string ends with a 'D'</li>
+ </ul>
+ <p>The expression would match inputs such as <code>ABBD</code>, <code>ABCCCCD</code>, <code>ABCBCCCD</code> and <code>ACCCCCD</code></p>
+ <p>It most cases, it doesn't take very long for a regex engine to find a match:</p>
+ <pre><code class="language-bash">$ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
+ 0.04s user 0.01s system 95% cpu 0.052 total
+
+ $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
+ 1.79s user 0.02s system 99% cpu 1.812 total
+ </code></pre>
+ <p>The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.</p>
+ <p>Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as <em>catastrophic backtracking</em>.</p>
+ <p>Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:</p>
+ <ol>
+ <li>CCC</li>
+ <li>CC+C</li>
+ <li>C+CC</li>
+ <li>C+C+C.</li>
+ </ol>
+ <p>The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use <a href="https://regex101.com/debugger">RegEx 101 debugger</a> to see the engine has to take a total of 38 steps before it can determine the string doesn't match.</p>
+ <p>From there, the number of steps the engine must use to validate a string just continues to grow.</p>
+ <table>
+ <thead>
+ <tr>
+ <th>String</th>
+ <th align="right">Number of C's</th>
+ <th align="right">Number of steps</th>
+ </tr>
+ </thead>
+ <tbody><tr>
+ <td>ACCCX</td>
+ <td align="right">3</td>
+ <td align="right">38</td>
+ </tr>
+ <tr>
+ <td>ACCCCX</td>
+ <td align="right">4</td>
+ <td align="right">71</td>
+ </tr>
+ <tr>
+ <td>ACCCCCX</td>
+ <td align="right">5</td>
+ <td align="right">136</td>
+ </tr>
+ <tr>
+ <td>ACCCCCCCCCCCCCCX</td>
+ <td align="right">14</td>
+ <td align="right">65,553</td>
+ </tr>
+ </tbody></table>
+ <p>By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>minimatch</code> to version 3.0.5 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/isaacs/minimatch/commit/a8763f4388e51956be62dc6025cec1126beeb5e6">GitHub Commit</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Improper Input Validation</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ go.mongodb.org/mongo-driver/bson/bsonrw
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, github.com/go-openapi/runtime/middleware@0.19.4 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/go-openapi/runtime/middleware@0.19.4
+ <span class="list-paths__item__arrow">›</span>
+ github.com/go-openapi/validate@0.19.5
+ <span class="list-paths__item__arrow">›</span>
+ github.com/go-openapi/strfmt@0.19.3
+ <span class="list-paths__item__arrow">›</span>
+ go.mongodb.org/mongo-driver/bson@1.1.2
+ <span class="list-paths__item__arrow">›</span>
+ go.mongodb.org/mongo-driver/bson/bsonrw@1.1.2
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/go-openapi/runtime/middleware@0.19.4
+ <span class="list-paths__item__arrow">›</span>
+ github.com/go-openapi/validate@0.19.5
+ <span class="list-paths__item__arrow">›</span>
+ github.com/go-openapi/strfmt@0.19.3
+ <span class="list-paths__item__arrow">›</span>
+ go.mongodb.org/mongo-driver/bson@1.1.2
+ <span class="list-paths__item__arrow">›</span>
+ go.mongodb.org/mongo-driver/bson/bsoncodec@1.1.2
+ <span class="list-paths__item__arrow">›</span>
+ go.mongodb.org/mongo-driver/bson/bsonrw@1.1.2
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://github.com/mongodb/mongo-go-driver">go.mongodb.org/mongo-driver/bson/bsonrw</a> is a The MongoDB supported driver for Go.</p>
+ <p>Affected versions of this package are vulnerable to Improper Input Validation. Specific cstrings input may not be properly validated in the MongoDB Go Driver when marshalling Go objects into BSON. A malicious user could use a Go object with specific string to potentially inject additional fields into marshalled documents.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>go.mongodb.org/mongo-driver/bson/bsonrw</code> to version 1.5.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/mongodb/mongo-go-driver/commit/3a89e6cde18d6ac5d38f39b54eaa8d4e321fd118">GitHub Commit</a></li>
+ <li><a href="https://jira.mongodb.org/browse/GODRIVER-1923">GitHub Issue</a></li>
+ <li><a href="https://github.com/mongodb/mongo-go-driver/releases/tag/v1.5.1">GitHub Release</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GOMONGODBORGMONGODRIVERBSONBSONRW-1303393">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Insecure Randomness</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ github.com/Masterminds/goutils
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, github.com/Masterminds/sprig@2.22.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/github.com/masterminds/goutils">github.com/masterminds/goutils</a> is a provides users with utility functions to manipulate strings in various ways.</p>
+ <p>Affected versions of this package are vulnerable to Insecure Randomness via the <code>RandomAlphaNumeric(int)</code> and <code>CryptoRandomAlphaNumeric(int)</code> functions. Small values of <code>int</code> in the functions above will return a smaller subset of results than they should. For example, <code>RandomAlphaNumeric(1)</code> would always return a digit in the 0-9 range, while <code>RandomAlphaNumeric(4)</code> return around ~7 million of the ~13M possible permutations.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>github.com/masterminds/goutils</code> to version 1.1.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/Masterminds/goutils/commit/f1923532a168b8203bfe956d8cd3b17ebece5982">GitHub Commit</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMASTERMINDSGOUTILS-1296313">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
+ <h2 class="card__title">Insecure Randomness</h2>
+ <div class="card__section">
+
+ <div class="label label--medium">
+ <span class="label__text">medium severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: golang
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ github.com/Masterminds/goutils
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+
+ github.com/argoproj/argo-cd/v2@0.0.0, github.com/Masterminds/sprig@2.22.0 and others
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/cmd@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ github.com/argoproj/argo-cd/v2@0.0.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/controller@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/api@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/argoproj/notifications-engine/pkg/templates@#4d8552b0775f
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/sprig@2.22.0
+ <span class="list-paths__item__arrow">›</span>
+ github.com/Masterminds/goutils@1.1.0
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="overview">Overview</h2>
+ <p><a href="https://pkg.go.dev/github.com/masterminds/goutils">github.com/masterminds/goutils</a> is a provides users with utility functions to manipulate strings in various ways.</p>
+ <p>Affected versions of this package are vulnerable to Insecure Randomness when randomly-generated alphanumeric strings contain significantly less entropy than expected, the <code>RandomAlphaNumeric</code> and <code>CryptoRandomAlphaNumeric</code> functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by these functions.</p>
+ <h2 id="remediation">Remediation</h2>
+ <p>Upgrade <code>github.com/masterminds/goutils</code> to version 1.1.1 or higher.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="https://github.com/Masterminds/goutils/commit/869801f20f9f1e7ecdbdb6422049d8241270d5e1">GitHub Commit</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMASTERMINDSGOUTILS-3121153">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
+ </div><!-- cards -->
+ </div>
+ </main><!-- .layout-stacked__content -->
+</body>
+
+</html>
diff --git a/docs/snyk/v2.5.2/ghcr.io_dexidp_dex_v2.35.3-distroless.html b/docs/snyk/v2.5.4/ghcr.io_dexidp_dex_v2.35.3.html
similarity index 97%
rename from docs/snyk/v2.5.2/ghcr.io_dexidp_dex_v2.35.3-distroless.html
rename to docs/snyk/v2.5.4/ghcr.io_dexidp_dex_v2.35.3.html
index 99b71bae68dc4..05fbac446368b 100644
--- a/docs/snyk/v2.5.2/ghcr.io_dexidp_dex_v2.35.3-distroless.html
+++ b/docs/snyk/v2.5.4/ghcr.io_dexidp_dex_v2.35.3.html
@@ -456,19 +456,19 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:18:18 am</p>
+ <p class="timestamp">December 11th 2022, 12:18:16 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
<ul>
- <li class="paths">ghcr.io/dexidp/dex:v2.35.3-distroless/dexidp/dex (deb)</li>
+ <li class="paths">ghcr.io/dexidp/dex:v2.35.3/dexidp/dex (apk)</li>
</ul>
</div>
<div class="meta-counts">
<div class="meta-count"><span>0</span> <span>known vulnerabilities</span></div>
<div class="meta-count"><span>0 vulnerable dependency paths</span></div>
- <div class="meta-count"><span>3</span> <span>dependencies</span></div>
+ <div class="meta-count"><span>14</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
</header><!-- .project__header -->
@@ -477,8 +477,8 @@ <h1 class="project__header__title">Snyk test report</h1>
<table class="metatable">
<tbody>
<tr class="meta-row"><th class="meta-row-label">Project</th> <td class="meta-row-value">docker-image|ghcr.io/dexidp/dex</td></tr>
- <tr class="meta-row"><th class="meta-row-label">Path</th> <td class="meta-row-value">ghcr.io/dexidp/dex:v2.35.3-distroless/dexidp/dex</td></tr>
- <tr class="meta-row"><th class="meta-row-label">Package Manager</th> <td class="meta-row-value">deb</td></tr>
+ <tr class="meta-row"><th class="meta-row-label">Path</th> <td class="meta-row-value">ghcr.io/dexidp/dex:v2.35.3/dexidp/dex</td></tr>
+ <tr class="meta-row"><th class="meta-row-label">Package Manager</th> <td class="meta-row-value">apk</td></tr>
</tbody>
</table>
diff --git a/docs/snyk/v2.5.2/haproxy_2.6.2-alpine.html b/docs/snyk/v2.5.4/haproxy_2.6.2-alpine.html
similarity index 99%
rename from docs/snyk/v2.5.2/haproxy_2.6.2-alpine.html
rename to docs/snyk/v2.5.4/haproxy_2.6.2-alpine.html
index e5127297b1cf6..3b78fccb4f957 100644
--- a/docs/snyk/v2.5.2/haproxy_2.6.2-alpine.html
+++ b/docs/snyk/v2.5.4/haproxy_2.6.2-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:18:21 am</p>
+ <p class="timestamp">December 11th 2022, 12:18:19 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
diff --git a/docs/snyk/v2.5.2/quay.io_argoproj_argocd_v2.5.2.html b/docs/snyk/v2.5.4/quay.io_argoproj_argocd_v2.5.4.html
similarity index 87%
rename from docs/snyk/v2.5.2/quay.io_argoproj_argocd_v2.5.2.html
rename to docs/snyk/v2.5.4/quay.io_argoproj_argocd_v2.5.4.html
index 1576c620cab74..4b1a61a7c71ad 100644
--- a/docs/snyk/v2.5.2/quay.io_argoproj_argocd_v2.5.2.html
+++ b/docs/snyk/v2.5.4/quay.io_argoproj_argocd_v2.5.4.html
@@ -7,7 +7,7 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>Snyk test report</title>
- <meta name="description" content="16 known vulnerabilities found in 87 vulnerable dependency paths.">
+ <meta name="description" content="13 known vulnerabilities found in 81 vulnerable dependency paths.">
<base target="_blank">
<link rel="icon" type="image/png" href="https://res.cloudinary.com/snyk/image/upload/v1468845142/favicon/favicon.png"
sizes="194x194">
@@ -456,18 +456,18 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:18:41 am</p>
+ <p class="timestamp">December 11th 2022, 12:18:50 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
<ul>
- <li class="paths">quay.io/argoproj/argocd:v2.5.2/argoproj/argocd (deb)</li>
+ <li class="paths">quay.io/argoproj/argocd:v2.5.4/argoproj/argocd (deb)</li>
</ul>
</div>
<div class="meta-counts">
- <div class="meta-count"><span>16</span> <span>known vulnerabilities</span></div>
- <div class="meta-count"><span>87 vulnerable dependency paths</span></div>
+ <div class="meta-count"><span>13</span> <span>known vulnerabilities</span></div>
+ <div class="meta-count"><span>81 vulnerable dependency paths</span></div>
<div class="meta-count"><span>162</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
@@ -477,7 +477,7 @@ <h1 class="project__header__title">Snyk test report</h1>
<table class="metatable">
<tbody>
<tr class="meta-row"><th class="meta-row-label">Project</th> <td class="meta-row-value">docker-image|quay.io/argoproj/argocd</td></tr>
- <tr class="meta-row"><th class="meta-row-label">Path</th> <td class="meta-row-value">quay.io/argoproj/argocd:v2.5.2/argoproj/argocd</td></tr>
+ <tr class="meta-row"><th class="meta-row-label">Path</th> <td class="meta-row-value">quay.io/argoproj/argocd:v2.5.4/argoproj/argocd</td></tr>
<tr class="meta-row"><th class="meta-row-label">Package Manager</th> <td class="meta-row-value">deb</td></tr>
<tr class="meta-row"><th class="meta-row-label">Manifest</th> <td class="meta-row-value">Dockerfile</td></tr>
</tbody>
@@ -485,79 +485,6 @@ <h1 class="project__header__title">Snyk test report</h1>
</section>
<div class="layout-container" style="padding-top: 35px;">
<div class="cards--vuln filter--patch filter--ignore">
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-42800</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- zlib/zlib1g
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- docker-image|quay.io/argoproj/argocd@v2.5.2, meta-common-packages@meta and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- meta-common-packages@meta
- <span class="list-paths__item__arrow">›</span>
- zlib/zlib1g@1:1.2.11.dfsg-2ubuntu9.2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>zlib</code> package.</em></p>
- <p>This issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A user may be able to cause unexpected app termination or arbitrary code execution.</p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>zlib</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-42800">ADVISORY</a></li>
- <li><a href="https://support.apple.com/en-us/HT213488">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213494">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213493">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213490">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213491">MISC</a></li>
- <li><a href="https://support.apple.com/en-us/HT213489">MISC</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-ZLIB-3098559">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
<h2 class="card__title">Off-by-one Error</h2>
<div class="card__section">
@@ -580,7 +507,7 @@ <h2 class="card__title">Off-by-one Error</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and systemd/libsystemd0@249.11-0ubuntu3.6
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and systemd/libsystemd0@249.11-0ubuntu3.6
</li>
</ul>
@@ -593,7 +520,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
systemd/libsystemd0@249.11-0ubuntu3.6
@@ -602,7 +529,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
apt@2.4.8
<span class="list-paths__item__arrow">›</span>
@@ -613,7 +540,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
procps/libprocps8@2:3.3.17-6ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -624,7 +551,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
util-linux@2.37.2-4ubuntu3
<span class="list-paths__item__arrow">›</span>
@@ -635,7 +562,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
util-linux/bsdutils@1:2.37.2-4ubuntu3
<span class="list-paths__item__arrow">›</span>
@@ -646,7 +573,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
apt@2.4.8
<span class="list-paths__item__arrow">›</span>
@@ -659,7 +586,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
systemd/libudev1@249.11-0ubuntu3.6
@@ -668,7 +595,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
libfido2/libfido2-1@1.10.0-1
<span class="list-paths__item__arrow">›</span>
@@ -679,7 +606,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
util-linux@2.37.2-4ubuntu3
<span class="list-paths__item__arrow">›</span>
@@ -690,7 +617,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
apt@2.4.8
<span class="list-paths__item__arrow">›</span>
@@ -719,6 +646,7 @@ <h2 id="references">References</h2>
<li><a href="https://github.com/systemd/systemd/commit/9102c625a673a3246d7e73d8737f3494446bad4e">MISC</a></li>
<li><a href="https://github.com/systemd/systemd/pull/23933">MISC</a></li>
<li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2139327">MISC</a></li>
+ <li><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVBQC2VLSDVQAPJTEMTREXDL4HYLXG2P/">FEDORA</a></li>
</ul>
<hr/>
@@ -727,245 +655,6 @@ <h2 id="references">References</h2>
<p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-SYSTEMD-3098846">More about this vulnerability</a></p>
</div>
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">Improper Validation of Array Index</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- sqlite3/libsqlite3-0
- </li>
-
- <li class="card__meta__item">Introduced through:
-
-
- docker-image|quay.io/argoproj/argocd@v2.5.2, gnupg2/gpg@2.2.27-3ubuntu2.1 and others
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- gnupg2/gpg@2.2.27-3ubuntu2.1
- <span class="list-paths__item__arrow">›</span>
- sqlite3/libsqlite3-0@3.37.2-2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>sqlite3</code> package.</em>
- <em>See <code>How to fix?</code> for <code>Ubuntu:22.04</code> relevant versions.</em></p>
- <p>SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API.</p>
- <h2 id="remediation">Remediation</h2>
- <p>Upgrade <code>Ubuntu:22.04</code> <code>sqlite3</code> to version 3.37.2-2ubuntu0.1 or higher.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-35737">ADVISORY</a></li>
- <li><a href="https://kb.cert.org/vuls/id/720344">MISC</a></li>
- <li><a href="https://www.sqlite.org/cves.html">MISC</a></li>
- <li><a href="https://sqlite.org/releaselog/3_39_2.html">CONFIRM</a></li>
- <li><a href="https://security.netapp.com/advisory/ntap-20220915-0009/">CONFIRM</a></li>
- <li><a href="https://blog.trailofbits.com/2022/10/25/sqlite-vulnerability-july-2022-library-api/">MISC</a></li>
- <li><a href="https://security.gentoo.org/glsa/202210-40">GENTOO</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-SQLITE3-2961525">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--medium" data-snyk-test="medium">
- <h2 class="card__title">CVE-2022-3715</h2>
- <div class="card__section">
-
- <div class="label label--medium">
- <span class="label__text">medium severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- bash
- </li>
-
- <li class="card__meta__item">Introduced through:
-
- docker-image|quay.io/argoproj/argocd@v2.5.2 and bash@5.1-6ubuntu1
-
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- bash@5.1-6ubuntu1
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
- </div>
-
- </div><!-- .card -->
- <div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
- <h2 class="card__title">Time-of-check Time-of-use (TOCTOU)</h2>
- <div class="card__section">
-
- <div class="label label--low">
- <span class="label__text">low severity</span>
- </div>
-
- <hr/>
-
- <ul class="card__meta">
- <li class="card__meta__item">
- Package Manager: ubuntu:22.04
- </li>
- <li class="card__meta__item">
- Vulnerable module:
-
- shadow/passwd
- </li>
-
- <li class="card__meta__item">Introduced through:
-
- docker-image|quay.io/argoproj/argocd@v2.5.2 and shadow/passwd@1:4.8.1-2ubuntu2
-
- </li>
- </ul>
-
- <hr/>
-
-
- <h3 class="card__section__title">Detailed paths</h3>
-
- <ul class="card__meta__paths">
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- adduser@3.118ubuntu5
- <span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- openssh/openssh-client@1:8.9p1-3
- <span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- <li>
- <span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
- <span class="list-paths__item__arrow">›</span>
- shadow/login@1:4.8.1-2ubuntu2
-
- </span>
-
- </li>
- </ul><!-- .list-paths -->
-
- </div><!-- .card__section -->
-
- <hr/>
- <!-- Overview -->
- <h2 id="nvd-description">NVD Description</h2>
- <p><strong><em>Note:</em></strong> <em>Versions mentioned in the description apply to the upstream <code>shadow</code> package.</em></p>
- <p>shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees</p>
- <h2 id="remediation">Remediation</h2>
- <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>shadow</code>.</p>
- <h2 id="references">References</h2>
- <ul>
- <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2013-4235">ADVISORY</a></li>
- <li><a href="https://security-tracker.debian.org/tracker/CVE-2013-4235">Debian Security Tracker</a></li>
- <li><a href="https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E">MLIST</a></li>
- <li><a href="https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235">RedHat Bugzilla Bug</a></li>
- <li><a href="https://access.redhat.com/security/cve/cve-2013-4235">RedHat CVE Database</a></li>
- <li><a href="https://security.gentoo.org/glsa/202210-26">GENTOO</a></li>
- </ul>
-
- <hr/>
-
- <div class="cta card__cta">
- <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-SHADOW-2801886">More about this vulnerability</a></p>
- </div>
-
</div><!-- .card -->
<div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
<h2 class="card__title">Uncontrolled Recursion</h2>
@@ -989,7 +678,7 @@ <h2 class="card__title">Uncontrolled Recursion</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
</li>
</ul>
@@ -1002,7 +691,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
@@ -1011,7 +700,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
grep@3.7-1build1
<span class="list-paths__item__arrow">›</span>
@@ -1070,7 +759,7 @@ <h2 class="card__title">Release of Invalid Pointer or Reference</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and patch@2.7.6-7build2
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and patch@2.7.6-7build2
</li>
</ul>
@@ -1083,7 +772,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
patch@2.7.6-7build2
@@ -1136,7 +825,7 @@ <h2 class="card__title">Double Free</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and patch@2.7.6-7build2
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and patch@2.7.6-7build2
</li>
</ul>
@@ -1149,7 +838,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
patch@2.7.6-7build2
@@ -1207,7 +896,7 @@ <h2 class="card__title">CVE-2021-41617</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and openssh/openssh-client@1:8.9p1-3
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and openssh/openssh-client@1:8.9p1-3
</li>
</ul>
@@ -1220,7 +909,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
openssh/openssh-client@1:8.9p1-3
@@ -1283,7 +972,7 @@ <h2 class="card__title">Information Exposure</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and openssh/openssh-client@1:8.9p1-3
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and openssh/openssh-client@1:8.9p1-3
</li>
</ul>
@@ -1296,7 +985,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
openssh/openssh-client@1:8.9p1-3
@@ -1356,7 +1045,7 @@ <h2 class="card__title">Out-of-bounds Read</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and ncurses/libtinfo6@6.3-2
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and ncurses/libtinfo6@6.3-2
</li>
</ul>
@@ -1369,7 +1058,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/libtinfo6@6.3-2
@@ -1378,7 +1067,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
bash@5.1-6ubuntu1
<span class="list-paths__item__arrow">›</span>
@@ -1389,7 +1078,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/libncursesw6@6.3-2
<span class="list-paths__item__arrow">›</span>
@@ -1400,7 +1089,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
less@590-1build1
<span class="list-paths__item__arrow">›</span>
@@ -1411,7 +1100,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
libedit/libedit2@3.1-20210910-1build1
<span class="list-paths__item__arrow">›</span>
@@ -1422,7 +1111,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/libncurses6@6.3-2
<span class="list-paths__item__arrow">›</span>
@@ -1433,7 +1122,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/ncurses-bin@6.3-2
<span class="list-paths__item__arrow">›</span>
@@ -1444,7 +1133,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
procps@2:3.3.17-6ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1455,7 +1144,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
util-linux@2.37.2-4ubuntu3
<span class="list-paths__item__arrow">›</span>
@@ -1466,7 +1155,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1481,7 +1170,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1496,7 +1185,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/libncursesw6@6.3-2
@@ -1505,7 +1194,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
procps@2:3.3.17-6ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1516,7 +1205,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1531,7 +1220,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/libncurses6@6.3-2
@@ -1540,7 +1229,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
procps@2:3.3.17-6ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1551,7 +1240,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/ncurses-base@6.3-2
@@ -1560,7 +1249,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
ncurses/ncurses-bin@6.3-2
@@ -1617,7 +1306,7 @@ <h2 class="card__title">Integer Overflow or Wraparound</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and krb5/libk5crypto3@1.19.2-2
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and krb5/libk5crypto3@1.19.2-2
</li>
</ul>
@@ -1630,7 +1319,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
krb5/libk5crypto3@1.19.2-2
@@ -1639,11 +1328,11 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1660,11 +1349,11 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1683,7 +1372,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
krb5/libkrb5-3@1.19.2-2
@@ -1692,11 +1381,11 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1713,7 +1402,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
krb5/libgssapi-krb5-2@1.19.2-2
@@ -1722,7 +1411,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
openssh/openssh-client@1:8.9p1-3
<span class="list-paths__item__arrow">›</span>
@@ -1733,7 +1422,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
git@1:2.34.1-1ubuntu1.5
<span class="list-paths__item__arrow">›</span>
@@ -1746,7 +1435,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
git@1:2.34.1-1ubuntu1.5
<span class="list-paths__item__arrow">›</span>
@@ -1761,11 +1450,11 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
adduser@3.118ubuntu5
<span class="list-paths__item__arrow">›</span>
- shadow/passwd@1:4.8.1-2ubuntu2
+ shadow/passwd@1:4.8.1-2ubuntu2.1
<span class="list-paths__item__arrow">›</span>
pam/libpam-modules@1.4.0-11ubuntu2
<span class="list-paths__item__arrow">›</span>
@@ -1780,7 +1469,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
meta-common-packages@meta
<span class="list-paths__item__arrow">›</span>
@@ -1838,7 +1527,7 @@ <h2 class="card__title">CVE-2022-3219</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and gnupg2/gpgv@2.2.27-3ubuntu2.1
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and gnupg2/gpgv@2.2.27-3ubuntu2.1
</li>
</ul>
@@ -1851,7 +1540,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpgv@2.2.27-3ubuntu2.1
@@ -1860,7 +1549,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
apt@2.4.8
<span class="list-paths__item__arrow">›</span>
@@ -1871,7 +1560,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1882,7 +1571,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/dirmngr@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1893,7 +1582,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1904,7 +1593,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1917,7 +1606,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1930,7 +1619,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/dirmngr@2.2.27-3ubuntu2.1
@@ -1939,7 +1628,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1950,7 +1639,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1963,7 +1652,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1
@@ -1972,7 +1661,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -1983,7 +1672,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg-utils@2.2.27-3ubuntu2.1
@@ -1992,7 +1681,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2003,7 +1692,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpg@2.2.27-3ubuntu2.1
@@ -2012,7 +1701,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2023,7 +1712,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2036,7 +1725,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2049,7 +1738,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpg-agent@2.2.27-3ubuntu2.1
@@ -2058,7 +1747,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2069,7 +1758,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2082,7 +1771,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2095,7 +1784,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1
@@ -2104,7 +1793,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2115,7 +1804,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1
@@ -2124,7 +1813,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2135,7 +1824,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gpgsm@2.2.27-3ubuntu2.1
@@ -2144,7 +1833,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
<span class="list-paths__item__arrow">›</span>
@@ -2155,7 +1844,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
gnupg2/gnupg@2.2.27-3ubuntu2.1
@@ -2206,7 +1895,7 @@ <h2 class="card__title">Allocation of Resources Without Limits or Throttling</h2
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and glibc/libc-bin@2.35-0ubuntu3.1
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and glibc/libc-bin@2.35-0ubuntu3.1
</li>
</ul>
@@ -2219,7 +1908,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
glibc/libc-bin@2.35-0ubuntu3.1
@@ -2228,7 +1917,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
meta-common-packages@meta
<span class="list-paths__item__arrow">›</span>
@@ -2286,7 +1975,7 @@ <h2 class="card__title">Improper Input Validation</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2, git@1:2.34.1-1ubuntu1.5 and others
+ docker-image|quay.io/argoproj/argocd@v2.5.4, git@1:2.34.1-1ubuntu1.5 and others
</li>
</ul>
@@ -2298,7 +1987,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
git@1:2.34.1-1ubuntu1.5
<span class="list-paths__item__arrow">›</span>
@@ -2309,7 +1998,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
git@1:2.34.1-1ubuntu1.5
@@ -2318,7 +2007,7 @@ <h3 class="card__section__title">Detailed paths</h3>
</li>
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
git-lfs@3.0.2-1
<span class="list-paths__item__arrow">›</span>
@@ -2374,7 +2063,7 @@ <h2 class="card__title">Improper Input Validation</h2>
<li class="card__meta__item">Introduced through:
- docker-image|quay.io/argoproj/argocd@v2.5.2 and coreutils@8.32-4.1ubuntu1
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and coreutils@8.32-4.1ubuntu1
</li>
</ul>
@@ -2387,7 +2076,7 @@ <h3 class="card__section__title">Detailed paths</h3>
<ul class="card__meta__paths">
<li>
<span class="list-paths__item__introduced"><em>Introduced through</em>:
- docker-image|quay.io/argoproj/argocd@v2.5.2
+ docker-image|quay.io/argoproj/argocd@v2.5.4
<span class="list-paths__item__arrow">›</span>
coreutils@8.32-4.1ubuntu1
@@ -2421,6 +2110,70 @@ <h2 id="references">References</h2>
</div>
</div><!-- .card -->
+ <div class="card card--vuln disclosure--not-new severity--low" data-snyk-test="low">
+ <h2 class="card__title">CVE-2022-3715</h2>
+ <div class="card__section">
+
+ <div class="label label--low">
+ <span class="label__text">low severity</span>
+ </div>
+
+ <hr/>
+
+ <ul class="card__meta">
+ <li class="card__meta__item">
+ Package Manager: ubuntu:22.04
+ </li>
+ <li class="card__meta__item">
+ Vulnerable module:
+
+ bash
+ </li>
+
+ <li class="card__meta__item">Introduced through:
+
+ docker-image|quay.io/argoproj/argocd@v2.5.4 and bash@5.1-6ubuntu1
+
+ </li>
+ </ul>
+
+ <hr/>
+
+
+ <h3 class="card__section__title">Detailed paths</h3>
+
+ <ul class="card__meta__paths">
+ <li>
+ <span class="list-paths__item__introduced"><em>Introduced through</em>:
+ docker-image|quay.io/argoproj/argocd@v2.5.4
+ <span class="list-paths__item__arrow">›</span>
+ bash@5.1-6ubuntu1
+
+ </span>
+
+ </li>
+ </ul><!-- .list-paths -->
+
+ </div><!-- .card__section -->
+
+ <hr/>
+ <!-- Overview -->
+ <h2 id="nvd-description">NVD Description</h2>
+ <p><em>This vulnerability has not been analyzed by NVD yet.</em></p>
+ <h2 id="remediation">Remediation</h2>
+ <p>There is no fixed version for <code>Ubuntu:22.04</code> <code>bash</code>.</p>
+ <h2 id="references">References</h2>
+ <ul>
+ <li><a href="http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-3715">ADVISORY</a></li>
+ </ul>
+
+ <hr/>
+
+ <div class="cta card__cta">
+ <p><a href="https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342">More about this vulnerability</a></p>
+ </div>
+
+ </div><!-- .card -->
</div><!-- cards -->
</div>
</main><!-- .layout-stacked__content -->
diff --git a/docs/snyk/v2.5.2/redis_7.0.5-alpine.html b/docs/snyk/v2.5.4/redis_7.0.5-alpine.html
similarity index 99%
rename from docs/snyk/v2.5.2/redis_7.0.5-alpine.html
rename to docs/snyk/v2.5.4/redis_7.0.5-alpine.html
index 317ab91564871..2bd3b01d8d62a 100644
--- a/docs/snyk/v2.5.2/redis_7.0.5-alpine.html
+++ b/docs/snyk/v2.5.4/redis_7.0.5-alpine.html
@@ -456,7 +456,7 @@
<div class="header-wrap">
<h1 class="project__header__title">Snyk test report</h1>
- <p class="timestamp">November 13th 2022, 12:18:45 am</p>
+ <p class="timestamp">December 11th 2022, 12:18:53 am</p>
</div>
<div class="source-panel">
<span>Scanned the following path:</span>
@@ -468,7 +468,7 @@ <h1 class="project__header__title">Snyk test report</h1>
<div class="meta-counts">
<div class="meta-count"><span>0</span> <span>known vulnerabilities</span></div>
<div class="meta-count"><span>0 vulnerable dependency paths</span></div>
- <div class="meta-count"><span>17</span> <span>dependencies</span></div>
+ <div class="meta-count"><span>18</span> <span>dependencies</span></div>
</div><!-- .meta-counts -->
</div><!-- .layout-container--short -->
</header><!-- .project__header -->