pass-operator@0.3.0 vulnerabilities

A Kubernetes operator that syncs and decrypts secrets from pass store git repositories

Direct Vulnerabilities

Known vulnerabilities in the pass-operator package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Access Control Bypass

pass-operator is an A Kubernetes operator that syncs and decrypts secrets from pass store git repositories

Affected versions of this package are vulnerable to Access Control Bypass which allows an unauthorized user to execute push operations to the repository.

How to fix Access Control Bypass?

Upgrade pass-operator to version 0.3.1 or higher.

[,0.3.1)