VYPR

apk package

chainguard/tekton-pipelines-workingdirinit-fips-1.7

pkg:apk/chainguard/tekton-pipelines-workingdirinit-fips-1.7

Vulnerabilities (22)

  • CVE-2025-68119Jan 28, 2026
    affected < 1.7.0-r1fixed 1.7.0-r1

    Downloading and building modules with malicious version strings can cause local code execution. On systems with Mercurial (hg) installed, downloading modules from non-standard sources (e.g., custom domains) can cause unexpected code execution due to how external VCS commands are

  • CVE-2023-37264Jul 7, 2023
    affected < 1.7.0-r14fixed 1.7.0-r14

    Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.35.0, pipelines do not validate child UIDs, which means that a user that has access to create TaskRuns can create their own Tasks that the Pipelines controller will ac

Page 2 of 2