tl;dr The Flux Team has found three security vulnerabilities in Flux, and we strongly advise you to upgrade your clusters as soon as you can. CVEAdvisorySeverityAffected versions CVE-2022-24817Improper kubeconfig validation allows arbitrary code executionCritical< 0.29.0 >= v0.1.0 CVE-2022-24877Improper path handling in Kustomization files allows path traversalCritical< v0.29.0 CVE-2022-24878Improper path handling in Kustomization files allows for denial of serviceHigh< v0.29.0 >= v0.19.0 Bre...
