Is it okay if we upgrade the versions of k8s.io/apimachinery/pkg/util/runtime, github.com/sirupsen/logrus and golang.org/x/net/http/httpproxy@v0.26.0 which holds high Severity CVEs
k8s.io/apimachinery/pkg/util/runtime - Snyk: CVSS v4.0 8.7 - High Severity | CVSS v3.1 7.5 - High Severitygithub.com/sirupsen/logrus - Snyk: CVSS v4.0 8.7 - High Severity | CVSS v3.1 7.5 - High Severitygolang.org/x/net/http/httpproxy@v0.26.0 - Snyk: CVSS 8.8 - High Severity
Current Version: v0.26.0
Fixed Version: v0.36.0
Is it okay if we upgrade the versions of
k8s.io/apimachinery/pkg/util/runtime,github.com/sirupsen/logrusandgolang.org/x/net/http/httpproxy@v0.26.0which holds high Severity CVEsk8s.io/apimachinery/pkg/util/runtime- Snyk: CVSS v4.0 8.7 - High Severity | CVSS v3.1 7.5 - High Severitygithub.com/sirupsen/logrus- Snyk: CVSS v4.0 8.7 - High Severity | CVSS v3.1 7.5 - High Severitygolang.org/x/net/http/httpproxy@v0.26.0- Snyk: CVSS 8.8 - High SeverityCurrent Version: v0.26.0
Fixed Version: v0.36.0