Adding Fixed Advisory GHSA-8r3f-844c-mc37 for tkn

wolfi-dev · Mar 21, 2024 · bcce341 · bcce341
1 parent 54dc763
commit bcce341
Showing 1 changed file with 28 additions and 17 deletions.
diff --git a/tkn.advisories.yaml b/tkn.advisories.yaml
@@ -90,47 +90,58 @@ advisories:
         data:
           fixed-version: 0.33.0-r3
 
-  - id: GHSA-2c7c-3mj9-8fqh
+  - id: CVE-2024-24786
+    aliases:
+      - GHSA-8r3f-844c-mc37
     events:
-      - timestamp: 2023-12-16T00:06:20Z
+      - timestamp: 2024-03-20T15:31:45Z
         type: fixed
         data:
-          fixed-version: 0.33.0-r2
+          fixed-version: 0.36.0-r0
 
-  - id: GHSA-9763-4f94-gfch
+  - id: CVE-2024-28180
+    aliases:
+      - GHSA-c5q2-7r4c-mv6g
     events:
-      - timestamp: 2024-01-11T07:20:04Z
+      - timestamp: 2024-03-08T07:32:23Z
         type: detection
         data:
           type: scan/v1
           data:
             subpackageName: tkn
-            componentID: 6d101837d2732305
-            componentName: github.com/cloudflare/circl
-            componentVersion: v1.3.5
+            componentID: ce15493f84f159f4
+            componentName: github.com/go-jose/go-jose/v3
+            componentVersion: v3.0.1
             componentType: go-module
             componentLocation: /usr/bin/tkn
             scanner: grype
-      - timestamp: 2024-01-24T07:11:50Z
+      - timestamp: 2024-03-08T15:57:40Z
         type: fixed
         data:
-          fixed-version: 0.34.0-r0
+          fixed-version: 0.35.1-r2
+
+  - id: GHSA-2c7c-3mj9-8fqh
+    events:
+      - timestamp: 2023-12-16T00:06:20Z
+        type: fixed
+        data:
+          fixed-version: 0.33.0-r2
 
-  - id: GHSA-c5q2-7r4c-mv6g
+  - id: GHSA-9763-4f94-gfch
     events:
-      - timestamp: 2024-03-08T07:32:23Z
+      - timestamp: 2024-01-11T07:20:04Z
         type: detection
         data:
           type: scan/v1
           data:
             subpackageName: tkn
-            componentID: ce15493f84f159f4
-            componentName: github.com/go-jose/go-jose/v3
-            componentVersion: v3.0.1
+            componentID: 6d101837d2732305
+            componentName: github.com/cloudflare/circl
+            componentVersion: v1.3.5
             componentType: go-module
             componentLocation: /usr/bin/tkn
             scanner: grype
-      - timestamp: 2024-03-08T15:57:40Z
+      - timestamp: 2024-01-24T07:11:50Z
         type: fixed
         data:
-          fixed-version: 0.35.1-r2
+          fixed-version: 0.34.0-r0