GHSA-cfpf-hrx2-8rv6 Affecting grafana-alloy package, versions <1.12.1-r1
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-CHAINGUARDLATEST-GRAFANAALLOY-14528494
- published19 Dec 2025
Introduced: 19 Dec 2025
CVE NOT AVAILABLEHow to fix?
Upgrade Chainguard grafana-alloy to version 1.12.1-r1 or higher.
NVD Description
This vulnerability has not been analyzed by NVD yet.