chore(deps): update uds common support dependencies by renovate[bot] · Pull Request #653 · defenseunicorns/uds-common

renovate · 2026-04-17T00:55:33Z

This PR contains the following updates:

Package	Type	Update	Change
defenseunicorns/zarf		minor	`v0.74.2` → `v0.75.0`
github/codeql-action	action	patch	`v4.35.1` → `v4.35.2`
oras-project/oras		patch	`1.3.1` → `1.3.2`

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

defenseunicorns/zarf (defenseunicorns/zarf)

`v0.75.0`

Compare Source

⚠ BREAKING CHANGES

remove 0.27.0 layout shim (#4826)
deploy: introduce connected mode (#4685)
only pull required layers during OCI deploy (#4699)

Features

deploy: introduce connected mode (#4685) (bb4083d)
init: adopt arbitrarily named gitea PVC (#4808) (d874d5c)
tls: support for tls generation with duration (#4769) (1fd32d5)

Bug Fixes

cache: support for default sdk cache path (#4765) (7b0e330)
only pull required layers during OCI deploy (#4699) (05a3a36)
remove 0.27.0 layout shim (#4826) (6106d17)
verify: deprecate PublicKeyPath in favor of VerifyBlobOptions (#4782) (2e8e58a)

What's Changed

🚀 Updates

docs: move x-mdx to documentation by @wcrum in zarf-dev#4753
fix!: only pull required layers during OCI deploy by @AustinAbro321 in zarf-dev#4699
docs: update CONTRIBUTING to point to the correct slack channel by @leppeK in zarf-dev#4812
fix(verify): deprecate PublicKeyPath in favor of VerifyBlobOptions by @brandtkeller in zarf-dev#4782
fix(cache): support for default sdk cache path by @brandtkeller in zarf-dev#4765
feat(tls): support for tls generation with duration by @brandtkeller in zarf-dev#4769
feat(deploy)!: introduce connected mode by @AustinAbro321 in zarf-dev#4685
fix!: remove 0.27.0 layout shim by @AustinAbro321 in zarf-dev#4826
feat(init): adopt arbitrarily named gitea PVC by @leppeK in zarf-dev#4808
chore(main): release 0.75.0 by @zarf-release-please[bot] in zarf-dev#4809

📦 Dependencies

chore(deps): bump github.com/fluxcd/source-controller/api from 1.8.1 to 1.8.2 by @dependabot[bot] in zarf-dev#4798
chore(deps): bump helm.sh/helm/v4 from 4.1.3 to 4.1.4 by @dependabot[bot] in zarf-dev#4815
chore(deps): bump defu from 6.1.4 to 6.1.6 in /site by @dependabot[bot] in zarf-dev#4784
chore(deps): bump vite from 6.4.1 to 6.4.2 in /site by @dependabot[bot] in zarf-dev#4789
chore(deps): bump lodash and @astrojs/language-server in /site by @dependabot[bot] in zarf-dev#4777
chore(deps-dev): bump yaml from 2.8.2 to 2.8.3 in /site by @dependabot[bot] in zarf-dev#4750
chore(deps): bump smol-toml from 1.6.0 to 1.6.1 in /site by @dependabot[bot] in zarf-dev#4748
chore(deps): bump devalue from 5.6.3 to 5.6.4 in /site by @dependabot[bot] in zarf-dev#4708
chore(deps-dev): bump undici from 7.18.2 to 7.24.2 in /site by @dependabot[bot] in zarf-dev#4713
chore(deps): bump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 by @dependabot[bot] in zarf-dev#4818
chore(deps): bump the actions-organization group with 2 updates by @dependabot[bot] in zarf-dev#4817
chore(deps-dev): bump picomatch from 2.3.1 to 2.3.2 in /site by @dependabot[bot] in zarf-dev#4749
chore(deps): bump github.com/docker/cli from 29.3.1+incompatible to 29.4.0+incompatible by @dependabot[bot] in zarf-dev#4797
chore(deps): bump lodash-es from 4.17.23 to 4.18.1 in /site by @dependabot[bot] in zarf-dev#4776

Full Changelog: zarf-dev/zarf@v0.74.2...v0.75.0

github/codeql-action (github/codeql-action)

`v4.35.2`

Compare Source

The undocumented TRAP cache cleanup feature that could be enabled using the CODEQL_ACTION_CLEANUP_TRAP_CACHES environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the trap-caching: false input to the init Action. #3795
The Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. #3789
Python analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. #3794
Fixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. #3807
Update default CodeQL bundle version to 2.25.2. #3823

oras-project/oras (oras-project/oras)

`v1.3.2`

Compare Source

Changelog

Upgrade Go snap to 1.26 in snapcraft.yaml (#2011)
Bump alpine base image from 3.22.1 → 3.22.3 (#2014)
Bump Go to 1.26.2, patching Go CVEs from 1.26.1 (#2026)

Verification

All release artifacts are signed with GPG key E462A3894CBAAA47. Signatures (.asc files) are attached to this release.

Public keys are available in the KEYS file.

Configuration

📅 Schedule: (in timezone America/New_York)

Branch creation
- At any time (no schedule defined)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2026-04-17T00:56:35Z

quay.io/rfcurated/nginx `1.29.8-slim-jammy-rfcurated-rfhardened` -> `1.29.8-slim-jammy-rfcurated-rfhardened`

New vulnerabilities: 0
Fixed vulnerabilities: 0
Existing vulnerabilities: 1

New vulnerabilities

ID	SEVERITY	URL

Fixed vulnerabilities

ID	SEVERITY	URL

Existing vulnerabilities

ID	SEVERITY	URL
CVE-2022-4899	low	https://ubuntu.com/security/CVE-2022-4899

nginx `1.29.8` -> `1.29.8`

New vulnerabilities: 0
Fixed vulnerabilities: 0
Existing vulnerabilities: 211

New vulnerabilities

ID	SEVERITY	URL

Fixed vulnerabilities

ID	SEVERITY	URL

Existing vulnerabilities

ID	SEVERITY	URL
CVE-2026-41080	high	https://security-tracker.debian.org/tracker/CVE-2026-41080
CVE-2026-32647	high	https://security-tracker.debian.org/tracker/CVE-2026-32647
CVE-2025-68431	high	https://security-tracker.debian.org/tracker/CVE-2025-68431
CVE-2026-4046	high	https://security-tracker.debian.org/tracker/CVE-2026-4046
CVE-2026-31790	high	https://security-tracker.debian.org/tracker/CVE-2026-31790
CVE-2026-27135	high	https://security-tracker.debian.org/tracker/CVE-2026-27135
CVE-2026-31790	high	https://security-tracker.debian.org/tracker/CVE-2026-31790
CVE-2026-28389	high	https://security-tracker.debian.org/tracker/CVE-2026-28389
CVE-2026-3805	high	https://security-tracker.debian.org/tracker/CVE-2026-3805
CVE-2026-4437	high	https://security-tracker.debian.org/tracker/CVE-2026-4437
CVE-2026-31790	high	https://security-tracker.debian.org/tracker/CVE-2026-31790
CVE-2026-4775	high	https://security-tracker.debian.org/tracker/CVE-2026-4775
CVE-2025-68431	high	https://security-tracker.debian.org/tracker/CVE-2025-68431
CVE-2026-28390	high	https://security-tracker.debian.org/tracker/CVE-2026-28390
CVE-2026-33164	high	https://security-tracker.debian.org/tracker/CVE-2026-33164
CVE-2026-2673	high	https://security-tracker.debian.org/tracker/CVE-2026-2673
CVE-2026-25210	high	https://security-tracker.debian.org/tracker/CVE-2026-25210
CVE-2026-28388	high	https://security-tracker.debian.org/tracker/CVE-2026-28388
CVE-2026-28388	high	https://security-tracker.debian.org/tracker/CVE-2026-28388
CVE-2026-28389	high	https://security-tracker.debian.org/tracker/CVE-2026-28389
CVE-2026-4437	high	https://security-tracker.debian.org/tracker/CVE-2026-4437
CVE-2025-13151	high	https://security-tracker.debian.org/tracker/CVE-2025-13151
CVE-2026-4046	high	https://security-tracker.debian.org/tracker/CVE-2026-4046
CVE-2026-28390	high	https://security-tracker.debian.org/tracker/CVE-2026-28390
CVE-2026-28390	high	https://security-tracker.debian.org/tracker/CVE-2026-28390
CVE-2025-68431	high	https://security-tracker.debian.org/tracker/CVE-2025-68431
CVE-2026-2673	high	https://security-tracker.debian.org/tracker/CVE-2026-2673
CVE-2026-27654	high	https://security-tracker.debian.org/tracker/CVE-2026-27654
CVE-2025-59375	high	https://security-tracker.debian.org/tracker/CVE-2025-59375
CVE-2026-2673	high	https://security-tracker.debian.org/tracker/CVE-2026-2673
CVE-2026-28388	high	https://security-tracker.debian.org/tracker/CVE-2026-28388
CVE-2026-28389	high	https://security-tracker.debian.org/tracker/CVE-2026-28389
CVE-2026-27651	high	https://security-tracker.debian.org/tracker/CVE-2026-27651
CVE-2025-69720	high	https://security-tracker.debian.org/tracker/CVE-2025-69720
CVE-2026-3805	high	https://security-tracker.debian.org/tracker/CVE-2026-3805
CVE-2025-69720	high	https://security-tracker.debian.org/tracker/CVE-2025-69720
CVE-2025-69720	high	https://security-tracker.debian.org/tracker/CVE-2025-69720
CVE-2025-6141	medium	https://security-tracker.debian.org/tracker/CVE-2025-6141
CVE-2026-40226	medium	https://security-tracker.debian.org/tracker/CVE-2026-40226
CVE-2026-4105	medium	https://security-tracker.debian.org/tracker/CVE-2026-4105
CVE-2025-14524	medium	https://security-tracker.debian.org/tracker/CVE-2025-14524
CVE-2026-3784	medium	https://security-tracker.debian.org/tracker/CVE-2026-3784
CVE-2026-27784	medium	https://security-tracker.debian.org/tracker/CVE-2026-27784
CVE-2025-13034	medium	https://security-tracker.debian.org/tracker/CVE-2025-13034
CVE-2026-32776	medium	https://security-tracker.debian.org/tracker/CVE-2026-32776
CVE-2026-40225	medium	https://security-tracker.debian.org/tracker/CVE-2026-40225
CVE-2026-32778	medium	https://security-tracker.debian.org/tracker/CVE-2026-32778
CVE-2025-6141	medium	https://security-tracker.debian.org/tracker/CVE-2025-6141
CVE-2026-4438	medium	https://security-tracker.debian.org/tracker/CVE-2026-4438
CVE-2026-40226	medium	https://security-tracker.debian.org/tracker/CVE-2026-40226
CVE-2026-3784	medium	https://security-tracker.debian.org/tracker/CVE-2026-3784
CVE-2025-66382	medium	https://security-tracker.debian.org/tracker/CVE-2025-66382
CVE-2024-38950	medium	https://security-tracker.debian.org/tracker/CVE-2024-38950
CVE-2025-14819	medium	https://security-tracker.debian.org/tracker/CVE-2025-14819
CVE-2026-27171	medium	https://security-tracker.debian.org/tracker/CVE-2026-27171
CVE-2026-0990	medium	https://security-tracker.debian.org/tracker/CVE-2026-0990
CVE-2026-4878	medium	https://security-tracker.debian.org/tracker/CVE-2026-4878
CVE-2025-6141	medium	https://security-tracker.debian.org/tracker/CVE-2025-6141
CVE-2025-13034	medium	https://security-tracker.debian.org/tracker/CVE-2025-13034
CVE-2026-29111	medium	https://security-tracker.debian.org/tracker/CVE-2026-29111
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-33165	medium	https://security-tracker.debian.org/tracker/CVE-2026-33165
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-3783	medium	https://security-tracker.debian.org/tracker/CVE-2026-3783
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-5704	medium	https://security-tracker.debian.org/tracker/CVE-2026-5704
CVE-2026-1965	medium	https://security-tracker.debian.org/tracker/CVE-2026-1965
CVE-2025-14524	medium	https://security-tracker.debian.org/tracker/CVE-2025-14524
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2025-14819	medium	https://security-tracker.debian.org/tracker/CVE-2025-14819
CVE-2026-3783	medium	https://security-tracker.debian.org/tracker/CVE-2026-3783
CVE-2026-4105	medium	https://security-tracker.debian.org/tracker/CVE-2026-4105
CVE-2026-29111	medium	https://security-tracker.debian.org/tracker/CVE-2026-29111
CVE-2025-10911	medium	https://security-tracker.debian.org/tracker/CVE-2025-10911
CVE-2026-1965	medium	https://security-tracker.debian.org/tracker/CVE-2026-1965
CVE-2026-34743	medium	https://security-tracker.debian.org/tracker/CVE-2026-34743
CVE-2024-38949	medium	https://security-tracker.debian.org/tracker/CVE-2024-38949
CVE-2026-4438	medium	https://security-tracker.debian.org/tracker/CVE-2026-4438
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-32777	medium	https://security-tracker.debian.org/tracker/CVE-2026-32777
CVE-2026-27456	medium	https://security-tracker.debian.org/tracker/CVE-2026-27456
CVE-2026-34757	medium	https://security-tracker.debian.org/tracker/CVE-2026-34757
CVE-2026-28755	medium	https://security-tracker.debian.org/tracker/CVE-2026-28755
CVE-2026-40225	medium	https://security-tracker.debian.org/tracker/CVE-2026-40225
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-40228	low	https://security-tracker.debian.org/tracker/CVE-2026-40228
CVE-2026-0989	low	https://security-tracker.debian.org/tracker/CVE-2026-0989
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2024-56433	low	https://security-tracker.debian.org/tracker/CVE-2024-56433
CVE-2025-11731	low	https://security-tracker.debian.org/tracker/CVE-2025-11731
CVE-2026-40228	low	https://security-tracker.debian.org/tracker/CVE-2026-40228
CVE-2024-56433	low	https://security-tracker.debian.org/tracker/CVE-2024-56433
CVE-2026-3184	low	https://security-tracker.debian.org/tracker/CVE-2026-3184
CVE-2026-28753	low	https://security-tracker.debian.org/tracker/CVE-2026-28753
CVE-2026-24515	low	https://security-tracker.debian.org/tracker/CVE-2026-24515
CVE-2013-0337	low	https://security-tracker.debian.org/tracker/CVE-2013-0337
CVE-2026-5958	low	https://security-tracker.debian.org/tracker/CVE-2026-5958
CVE-2026-0992	low	https://security-tracker.debian.org/tracker/CVE-2026-0992
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2024-26458	none	https://security-tracker.debian.org/tracker/CVE-2024-26458
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2018-20796	none	https://security-tracker.debian.org/tracker/CVE-2018-20796
CVE-2019-9192	none	https://security-tracker.debian.org/tracker/CVE-2019-9192
CVE-2019-9192	none	https://security-tracker.debian.org/tracker/CVE-2019-9192
CVE-2026-3713	none	https://security-tracker.debian.org/tracker/CVE-2026-3713
CVE-2026-22185	none	https://security-tracker.debian.org/tracker/CVE-2026-22185
CVE-2025-8177	none	https://security-tracker.debian.org/tracker/CVE-2025-8177
CVE-2007-5686	none	https://security-tracker.debian.org/tracker/CVE-2007-5686
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2025-15079	none	https://security-tracker.debian.org/tracker/CVE-2025-15079
CVE-2017-18018	none	https://security-tracker.debian.org/tracker/CVE-2017-18018
CVE-2019-1010025	none	https://security-tracker.debian.org/tracker/CVE-2019-1010025
CVE-2024-26461	none	https://security-tracker.debian.org/tracker/CVE-2024-26461
CVE-2025-10966	none	https://security-tracker.debian.org/tracker/CVE-2025-10966
CVE-2023-31439	none	https://security-tracker.debian.org/tracker/CVE-2023-31439
CVE-2018-5709	none	https://security-tracker.debian.org/tracker/CVE-2018-5709
CVE-2013-4392	none	https://security-tracker.debian.org/tracker/CVE-2013-4392
CVE-2018-10126	none	https://security-tracker.debian.org/tracker/CVE-2018-10126
CVE-2007-5686	none	https://security-tracker.debian.org/tracker/CVE-2007-5686
CVE-2005-2541	none	https://security-tracker.debian.org/tracker/CVE-2005-2541
CVE-2011-3374	none	https://security-tracker.debian.org/tracker/CVE-2011-3374
CVE-2025-15079	none	https://security-tracker.debian.org/tracker/CVE-2025-15079
CVE-2019-1010024	none	https://security-tracker.debian.org/tracker/CVE-2019-1010024
CVE-2019-1010022	none	https://security-tracker.debian.org/tracker/CVE-2019-1010022
CVE-2023-31439	none	https://security-tracker.debian.org/tracker/CVE-2023-31439
CVE-2011-4116	none	https://security-tracker.debian.org/tracker/CVE-2011-4116
CVE-2021-45346	none	https://security-tracker.debian.org/tracker/CVE-2021-45346
CVE-2025-61144	none	https://security-tracker.debian.org/tracker/CVE-2025-61144
CVE-2013-4392	none	https://security-tracker.debian.org/tracker/CVE-2013-4392
CVE-2023-31438	none	https://security-tracker.debian.org/tracker/CVE-2023-31438
CVE-2025-15224	none	https://security-tracker.debian.org/tracker/CVE-2025-15224
CVE-2024-26461	none	https://security-tracker.debian.org/tracker/CVE-2024-26461
CVE-2022-1210	none	https://security-tracker.debian.org/tracker/CVE-2022-1210
CVE-2020-15719	none	https://security-tracker.debian.org/tracker/CVE-2020-15719
CVE-2024-26458	none	https://security-tracker.debian.org/tracker/CVE-2024-26458
CVE-2025-70873	none	https://security-tracker.debian.org/tracker/CVE-2025-70873
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2025-8732	none	https://security-tracker.debian.org/tracker/CVE-2025-8732
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2023-31437	none	https://security-tracker.debian.org/tracker/CVE-2023-31437
CVE-2024-26458	none	https://security-tracker.debian.org/tracker/CVE-2024-26458
CVE-2018-5709	none	https://security-tracker.debian.org/tracker/CVE-2018-5709
CVE-2025-14017	none	https://security-tracker.debian.org/tracker/CVE-2025-14017
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2024-2236	none	https://security-tracker.debian.org/tracker/CVE-2024-2236
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2019-1010023	none	https://security-tracker.debian.org/tracker/CVE-2019-1010023
CVE-2026-3949	none	https://security-tracker.debian.org/tracker/CVE-2026-3949
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2018-6829	none	https://security-tracker.debian.org/tracker/CVE-2018-6829
CVE-2025-61147	none	https://security-tracker.debian.org/tracker/CVE-2025-61147
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2011-3389	none	https://security-tracker.debian.org/tracker/CVE-2011-3389
CVE-2018-5709	none	https://security-tracker.debian.org/tracker/CVE-2018-5709
CVE-2018-5709	none	https://security-tracker.debian.org/tracker/CVE-2018-5709
CVE-2025-61143	none	https://security-tracker.debian.org/tracker/CVE-2025-61143
CVE-2017-14159	none	https://security-tracker.debian.org/tracker/CVE-2017-14159
CVE-2026-3949	none	https://security-tracker.debian.org/tracker/CVE-2026-3949
CVE-2017-17740	none	https://security-tracker.debian.org/tracker/CVE-2017-17740
CVE-2019-1010025	none	https://security-tracker.debian.org/tracker/CVE-2019-1010025
CVE-2023-31438	none	https://security-tracker.debian.org/tracker/CVE-2023-31438
CVE-2025-5278	none	https://security-tracker.debian.org/tracker/CVE-2025-5278
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2015-9019	none	https://security-tracker.debian.org/tracker/CVE-2015-9019
CVE-2019-1010022	none	https://security-tracker.debian.org/tracker/CVE-2019-1010022
CVE-2021-4214	none	https://security-tracker.debian.org/tracker/CVE-2021-4214
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2026-3949	none	https://security-tracker.debian.org/tracker/CVE-2026-3949
CVE-2009-4487	none	https://security-tracker.debian.org/tracker/CVE-2009-4487
CVE-2015-3276	none	https://security-tracker.debian.org/tracker/CVE-2015-3276
CVE-2019-1010023	none	https://security-tracker.debian.org/tracker/CVE-2019-1010023
CVE-2025-10966	none	https://security-tracker.debian.org/tracker/CVE-2025-10966
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2025-61145	none	https://security-tracker.debian.org/tracker/CVE-2025-61145
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2026-1757	none	https://security-tracker.debian.org/tracker/CVE-2026-1757
CVE-2022-0563	none	https://security-tracker.debian.org/tracker/CVE-2022-0563
CVE-2017-16232	none	https://security-tracker.debian.org/tracker/CVE-2017-16232
CVE-2017-9937	none	https://security-tracker.debian.org/tracker/CVE-2017-9937
CVE-2010-4756	none	https://security-tracker.debian.org/tracker/CVE-2010-4756
CVE-2025-8534	none	https://security-tracker.debian.org/tracker/CVE-2025-8534
CVE-2024-26461	none	https://security-tracker.debian.org/tracker/CVE-2024-26461
CVE-2025-15224	none	https://security-tracker.debian.org/tracker/CVE-2025-15224
CVE-2019-1010024	none	https://security-tracker.debian.org/tracker/CVE-2019-1010024
CVE-2025-8176	none	https://security-tracker.debian.org/tracker/CVE-2025-8176
CVE-2010-4756	none	https://security-tracker.debian.org/tracker/CVE-2010-4756
CVE-2018-20796	none	https://security-tracker.debian.org/tracker/CVE-2018-20796
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2011-3374	none	https://security-tracker.debian.org/tracker/CVE-2011-3374
CVE-2025-14104	none	https://security-tracker.debian.org/tracker/CVE-2025-14104
CVE-2025-14017	none	https://security-tracker.debian.org/tracker/CVE-2025-14017
CVE-2023-31437	none	https://security-tracker.debian.org/tracker/CVE-2023-31437
CVE-2024-26458	none	https://security-tracker.debian.org/tracker/CVE-2024-26458
CVE-2024-26461	none	https://security-tracker.debian.org/tracker/CVE-2024-26461
CVE-2026-28387	unknown	https://security-tracker.debian.org/tracker/CVE-2026-28387
CVE-2026-31789	unknown	https://security-tracker.debian.org/tracker/CVE-2026-31789
CVE-2026-31789	unknown	https://security-tracker.debian.org/tracker/CVE-2026-31789
CVE-2026-28387	unknown	https://security-tracker.debian.org/tracker/CVE-2026-28387
CVE-2026-28387	unknown	https://security-tracker.debian.org/tracker/CVE-2026-28387
CVE-2026-31789	unknown	https://security-tracker.debian.org/tracker/CVE-2026-31789

registry1.dso.mil/ironbank/opensource/nginx/nginx `1.29.8` -> `1.29.8`

New vulnerabilities: 0
Fixed vulnerabilities: 0
Existing vulnerabilities: 206

New vulnerabilities

ID	SEVERITY	URL

Fixed vulnerabilities

ID	SEVERITY	URL

Existing vulnerabilities

ID	SEVERITY	URL
CVE-2026-4786	high	https://access.redhat.com/security/cve/CVE-2026-4786
CVE-2026-4878	high	https://access.redhat.com/security/cve/CVE-2026-4878
CVE-2026-6100	high	https://access.redhat.com/security/cve/CVE-2026-6100
CVE-2026-6100	high	https://access.redhat.com/security/cve/CVE-2026-6100
CVE-2024-12254	high	https://access.redhat.com/security/cve/CVE-2024-12254
CVE-2026-4786	high	https://access.redhat.com/security/cve/CVE-2026-4786
CVE-2024-12254	high	https://access.redhat.com/security/cve/CVE-2024-12254
CVE-2026-4786	high	https://access.redhat.com/security/cve/CVE-2026-4786
CVE-2024-12254	high	https://access.redhat.com/security/cve/CVE-2024-12254
CVE-2026-4424	high	https://access.redhat.com/security/cve/CVE-2026-4424
CVE-2026-6100	high	https://access.redhat.com/security/cve/CVE-2026-6100
CVE-2024-1488	high	https://access.redhat.com/security/cve/CVE-2024-1488
CVE-2024-12133	medium	https://access.redhat.com/security/cve/CVE-2024-12133
CVE-2026-27456	medium	https://access.redhat.com/security/cve/CVE-2026-27456
CVE-2026-1965	medium	https://access.redhat.com/security/cve/CVE-2026-1965
CVE-2026-4105	medium	https://access.redhat.com/security/cve/CVE-2026-4105
CVE-2025-11468	medium	https://access.redhat.com/security/cve/CVE-2025-11468
CVE-2026-3644	medium	https://access.redhat.com/security/cve/CVE-2026-3644
CVE-2026-2625	medium	https://access.redhat.com/security/cve/CVE-2026-2625
CVE-2026-27456	medium	https://access.redhat.com/security/cve/CVE-2026-27456
CVE-2025-4598	medium	https://access.redhat.com/security/cve/CVE-2025-4598
CVE-2025-7458	medium	https://access.redhat.com/security/cve/CVE-2025-7458
CVE-2026-0672	medium	https://access.redhat.com/security/cve/CVE-2026-0672
CVE-2026-29111	medium	https://access.redhat.com/security/cve/CVE-2026-29111
CVE-2026-3805	medium	https://access.redhat.com/security/cve/CVE-2026-3805
CVE-2025-12781	medium	https://access.redhat.com/security/cve/CVE-2025-12781
CVE-2025-14512	medium	https://access.redhat.com/security/cve/CVE-2025-14512
CVE-2024-12243	medium	https://access.redhat.com/security/cve/CVE-2024-12243
CVE-2026-32778	medium	https://access.redhat.com/security/cve/CVE-2026-32778
CVE-2026-4046	medium	https://access.redhat.com/security/cve/CVE-2026-4046
CVE-2026-27456	medium	https://access.redhat.com/security/cve/CVE-2026-27456
CVE-2026-32777	medium	https://access.redhat.com/security/cve/CVE-2026-32777
CVE-2026-27456	medium	https://access.redhat.com/security/cve/CVE-2026-27456
CVE-2026-4224	medium	https://access.redhat.com/security/cve/CVE-2026-4224
CVE-2026-27456	medium	https://access.redhat.com/security/cve/CVE-2026-27456
CVE-2026-1757	medium	https://access.redhat.com/security/cve/CVE-2026-1757
CVE-2024-12224	medium	https://access.redhat.com/security/cve/CVE-2024-12224
CVE-2026-0672	medium	https://access.redhat.com/security/cve/CVE-2026-0672
CVE-2025-29087	medium	https://access.redhat.com/security/cve/CVE-2025-29087
CVE-2026-4046	medium	https://access.redhat.com/security/cve/CVE-2026-4046
CVE-2025-15282	medium	https://access.redhat.com/security/cve/CVE-2025-15282
CVE-2025-14017	medium	https://access.redhat.com/security/cve/CVE-2025-14017
CVE-2025-11468	medium	https://access.redhat.com/security/cve/CVE-2025-11468
CVE-2026-5713	medium	https://access.redhat.com/security/cve/CVE-2026-5713
CVE-2026-5713	medium	https://access.redhat.com/security/cve/CVE-2026-5713
CVE-2026-3805	medium	https://access.redhat.com/security/cve/CVE-2026-3805
CVE-2025-14017	medium	https://access.redhat.com/security/cve/CVE-2025-14017
CVE-2026-25645	medium	https://access.redhat.com/security/cve/CVE-2026-25645
CVE-2025-13837	medium	https://access.redhat.com/security/cve/CVE-2025-13837
CVE-2026-4105	medium	https://access.redhat.com/security/cve/CVE-2026-4105
CVE-2025-50182	medium	https://access.redhat.com/security/cve/CVE-2025-50182
CVE-2025-15282	medium	https://access.redhat.com/security/cve/CVE-2025-15282
CVE-2025-12781	medium	https://access.redhat.com/security/cve/CVE-2025-12781
CVE-2026-32284	medium	https://access.redhat.com/security/cve/CVE-2026-32284
CVE-2026-28755	medium	https://access.redhat.com/security/cve/CVE-2026-28755
CVE-2026-2100	medium	https://access.redhat.com/security/cve/CVE-2026-2100
CVE-2026-4105	medium	https://access.redhat.com/security/cve/CVE-2026-4105
CVE-2026-0990	medium	https://access.redhat.com/security/cve/CVE-2026-0990
CVE-2025-11468	medium	https://access.redhat.com/security/cve/CVE-2025-11468
CVE-2024-12243	medium	https://access.redhat.com/security/cve/CVE-2024-12243
CVE-2025-13034	medium	https://access.redhat.com/security/cve/CVE-2025-13034
CVE-2026-1502	medium	https://access.redhat.com/security/cve/CVE-2026-1502
CVE-2025-4598	medium	https://access.redhat.com/security/cve/CVE-2025-4598
CVE-2026-3784	medium	https://access.redhat.com/security/cve/CVE-2026-3784
CVE-2026-4437	medium	https://access.redhat.com/security/cve/CVE-2026-4437
CVE-2026-29111	medium	https://access.redhat.com/security/cve/CVE-2026-29111
CVE-2026-27456	medium	https://access.redhat.com/security/cve/CVE-2026-27456
CVE-2026-1965	medium	https://access.redhat.com/security/cve/CVE-2026-1965
CVE-2025-50181	medium	https://access.redhat.com/security/cve/CVE-2025-50181
CVE-2025-6069	medium	https://access.redhat.com/security/cve/CVE-2025-6069
CVE-2026-28390	medium	https://access.redhat.com/security/cve/CVE-2026-28390
CVE-2024-28834	medium	https://access.redhat.com/security/cve/CVE-2024-28834
CVE-2026-5713	medium	https://access.redhat.com/security/cve/CVE-2026-5713
CVE-2024-28834	medium	https://access.redhat.com/security/cve/CVE-2024-28834
CVE-2026-34743	medium	https://access.redhat.com/security/cve/CVE-2026-34743
CVE-2026-2100	medium	https://access.redhat.com/security/cve/CVE-2026-2100
CVE-2026-1502	medium	https://access.redhat.com/security/cve/CVE-2026-1502
CVE-2025-11411	medium	https://access.redhat.com/security/cve/CVE-2025-11411
CVE-2026-0672	medium	https://access.redhat.com/security/cve/CVE-2026-0672
CVE-2024-12243	medium	https://access.redhat.com/security/cve/CVE-2024-12243
CVE-2025-5278	medium	https://access.redhat.com/security/cve/CVE-2025-5278
CVE-2026-31790	medium	https://access.redhat.com/security/cve/CVE-2026-31790
CVE-2025-4516	medium	https://access.redhat.com/security/cve/CVE-2025-4516
CVE-2024-28835	medium	https://access.redhat.com/security/cve/CVE-2024-28835
CVE-2026-4437	medium	https://access.redhat.com/security/cve/CVE-2026-4437
CVE-2026-4046	medium	https://access.redhat.com/security/cve/CVE-2026-4046
CVE-2026-4224	medium	https://access.redhat.com/security/cve/CVE-2026-4224
CVE-2025-12781	medium	https://access.redhat.com/security/cve/CVE-2025-12781
CVE-2026-3784	medium	https://access.redhat.com/security/cve/CVE-2026-3784
CVE-2026-3783	medium	https://access.redhat.com/security/cve/CVE-2026-3783
CVE-2026-3644	medium	https://access.redhat.com/security/cve/CVE-2026-3644
CVE-2025-67897	medium	https://access.redhat.com/security/cve/CVE-2025-67897
CVE-2024-45490	medium	https://access.redhat.com/security/cve/CVE-2024-45490
CVE-2025-14087	medium	https://access.redhat.com/security/cve/CVE-2025-14087
CVE-2025-13837	medium	https://access.redhat.com/security/cve/CVE-2025-13837
CVE-2026-1484	medium	https://access.redhat.com/security/cve/CVE-2026-1484
CVE-2025-6069	medium	https://access.redhat.com/security/cve/CVE-2025-6069
CVE-2024-28834	medium	https://access.redhat.com/security/cve/CVE-2024-28834
CVE-2025-6069	medium	https://access.redhat.com/security/cve/CVE-2025-6069
CVE-2024-28835	medium	https://access.redhat.com/security/cve/CVE-2024-28835
CVE-2026-1502	medium	https://access.redhat.com/security/cve/CVE-2026-1502
CVE-2026-4224	medium	https://access.redhat.com/security/cve/CVE-2026-4224
CVE-2025-15282	medium	https://access.redhat.com/security/cve/CVE-2025-15282
CVE-2024-28835	medium	https://access.redhat.com/security/cve/CVE-2024-28835
CVE-2025-4598	medium	https://access.redhat.com/security/cve/CVE-2025-4598
CVE-2025-13837	medium	https://access.redhat.com/security/cve/CVE-2025-13837
CVE-2026-32776	medium	https://access.redhat.com/security/cve/CVE-2026-32776
CVE-2026-3783	medium	https://access.redhat.com/security/cve/CVE-2026-3783
CVE-2026-4437	medium	https://access.redhat.com/security/cve/CVE-2026-4437
CVE-2025-13034	medium	https://access.redhat.com/security/cve/CVE-2025-13034
CVE-2026-29111	medium	https://access.redhat.com/security/cve/CVE-2026-29111
CVE-2025-4516	medium	https://access.redhat.com/security/cve/CVE-2025-4516
CVE-2025-4516	medium	https://access.redhat.com/security/cve/CVE-2025-4516
CVE-2026-4426	medium	https://access.redhat.com/security/cve/CVE-2026-4426
CVE-2026-3644	medium	https://access.redhat.com/security/cve/CVE-2026-3644
CVE-2026-5745	medium	https://access.redhat.com/security/cve/CVE-2026-5745
CVE-2025-60753	medium	https://access.redhat.com/security/cve/CVE-2025-60753
CVE-2026-1489	medium	https://access.redhat.com/security/cve/CVE-2026-1489
CVE-2026-2673	low	https://access.redhat.com/security/cve/CVE-2026-2673
CVE-2025-1795	low	https://access.redhat.com/security/cve/CVE-2025-1795
CVE-2026-4438	low	https://access.redhat.com/security/cve/CVE-2026-4438
CVE-2026-4438	low	https://access.redhat.com/security/cve/CVE-2026-4438
CVE-2024-11053	low	https://access.redhat.com/security/cve/CVE-2024-11053
CVE-2025-6170	low	https://access.redhat.com/security/cve/CVE-2025-6170
CVE-2025-1377	low	https://access.redhat.com/security/cve/CVE-2025-1377
CVE-2025-1377	low	https://access.redhat.com/security/cve/CVE-2025-1377
CVE-2024-4741	low	https://access.redhat.com/security/cve/CVE-2024-4741
CVE-2025-7039	low	https://access.redhat.com/security/cve/CVE-2025-7039
CVE-2025-6052	low	https://access.redhat.com/security/cve/CVE-2025-6052
CVE-2024-7264	low	https://access.redhat.com/security/cve/CVE-2024-7264
CVE-2025-1376	low	https://access.redhat.com/security/cve/CVE-2025-1376
CVE-2025-15281	low	https://access.redhat.com/security/cve/CVE-2025-15281
CVE-2025-15281	low	https://access.redhat.com/security/cve/CVE-2025-15281
CVE-2025-6075	low	https://access.redhat.com/security/cve/CVE-2025-6075
CVE-2023-53161	low	https://access.redhat.com/security/cve/CVE-2023-53161
CVE-2025-70873	low	https://access.redhat.com/security/cve/CVE-2025-70873
CVE-2025-15224	low	https://access.redhat.com/security/cve/CVE-2025-15224
CVE-2025-1371	low	https://access.redhat.com/security/cve/CVE-2025-1371
CVE-2025-15079	low	https://access.redhat.com/security/cve/CVE-2025-15079
CVE-2025-1795	low	https://access.redhat.com/security/cve/CVE-2025-1795
CVE-2025-15281	low	https://access.redhat.com/security/cve/CVE-2025-15281
CVE-2025-6075	low	https://access.redhat.com/security/cve/CVE-2025-6075
CVE-2025-14524	low	https://access.redhat.com/security/cve/CVE-2025-14524
CVE-2025-1795	low	https://access.redhat.com/security/cve/CVE-2025-1795
CVE-2026-24515	low	https://access.redhat.com/security/cve/CVE-2026-24515
CVE-2025-14524	low	https://access.redhat.com/security/cve/CVE-2025-14524
CVE-2025-13151	low	https://access.redhat.com/security/cve/CVE-2025-13151
CVE-2024-43168	low	https://access.redhat.com/security/cve/CVE-2024-43168
CVE-2025-27113	low	https://access.redhat.com/security/cve/CVE-2025-27113
CVE-2024-34459	low	https://access.redhat.com/security/cve/CVE-2024-34459
CVE-2026-28388	low	https://access.redhat.com/security/cve/CVE-2026-28388
CVE-2026-1485	low	https://access.redhat.com/security/cve/CVE-2026-1485
CVE-2024-5535	low	https://access.redhat.com/security/cve/CVE-2024-5535
CVE-2024-13176	low	https://access.redhat.com/security/cve/CVE-2024-13176
CVE-2025-10148	low	https://access.redhat.com/security/cve/CVE-2025-10148
CVE-2025-1376	low	https://access.redhat.com/security/cve/CVE-2025-1376
CVE-2026-3479	low	https://access.redhat.com/security/cve/CVE-2026-3479
CVE-2026-41080	low	https://access.redhat.com/security/cve/CVE-2026-41080
CVE-2025-5918	low	https://access.redhat.com/security/cve/CVE-2025-5918
CVE-2025-15079	low	https://access.redhat.com/security/cve/CVE-2025-15079
CVE-2025-5916	low	https://access.redhat.com/security/cve/CVE-2025-5916
CVE-2024-4603	low	https://access.redhat.com/security/cve/CVE-2024-4603
CVE-2024-7592	low	https://access.redhat.com/security/cve/CVE-2024-7592
CVE-2026-0988	low	https://access.redhat.com/security/cve/CVE-2026-0988
CVE-2025-53859	low	https://access.redhat.com/security/cve/CVE-2025-53859
CVE-2025-1371	low	https://access.redhat.com/security/cve/CVE-2025-1371
CVE-2025-9232	low	https://access.redhat.com/security/cve/CVE-2025-9232
CVE-2025-1376	low	https://access.redhat.com/security/cve/CVE-2025-1376
CVE-2024-33655	low	https://access.redhat.com/security/cve/CVE-2024-33655
CVE-2025-14819	low	https://access.redhat.com/security/cve/CVE-2025-14819
CVE-2024-7592	low	https://access.redhat.com/security/cve/CVE-2024-7592
CVE-2026-2297	low	https://access.redhat.com/security/cve/CVE-2026-2297
CVE-2024-11053	low	https://access.redhat.com/security/cve/CVE-2024-11053
CVE-2026-2673	low	https://access.redhat.com/security/cve/CVE-2026-2673
CVE-2025-6075	low	https://access.redhat.com/security/cve/CVE-2025-6075
CVE-2024-41996	low	https://access.redhat.com/security/cve/CVE-2024-41996
CVE-2025-1632	low	https://access.redhat.com/security/cve/CVE-2025-1632
CVE-2025-14819	low	https://access.redhat.com/security/cve/CVE-2025-14819
CVE-2024-58261	low	https://access.redhat.com/security/cve/CVE-2024-58261
CVE-2024-7592	low	https://access.redhat.com/security/cve/CVE-2024-7592
CVE-2025-1371	low	https://access.redhat.com/security/cve/CVE-2025-1371
CVE-2025-1377	low	https://access.redhat.com/security/cve/CVE-2025-1377
CVE-2025-66382	low	https://access.redhat.com/security/cve/CVE-2025-66382
CVE-2026-2297	low	https://access.redhat.com/security/cve/CVE-2026-2297
CVE-2026-4438	low	https://access.redhat.com/security/cve/CVE-2026-4438
CVE-2025-3360	low	https://access.redhat.com/security/cve/CVE-2025-3360
CVE-2024-43167	low	https://access.redhat.com/security/cve/CVE-2024-43167
CVE-2026-0989	low	https://access.redhat.com/security/cve/CVE-2026-0989
CVE-2026-31789	low	https://access.redhat.com/security/cve/CVE-2026-31789
CVE-2026-3479	low	https://access.redhat.com/security/cve/CVE-2026-3479
CVE-2025-1377	low	https://access.redhat.com/security/cve/CVE-2025-1377
CVE-2026-3479	low	https://access.redhat.com/security/cve/CVE-2026-3479
CVE-2025-5917	low	https://access.redhat.com/security/cve/CVE-2025-5917
CVE-2025-15224	low	https://access.redhat.com/security/cve/CVE-2025-15224
CVE-2026-2673	low	https://access.redhat.com/security/cve/CVE-2026-2673
CVE-2026-28753	low	https://access.redhat.com/security/cve/CVE-2026-28753
CVE-2025-5915	low	https://access.redhat.com/security/cve/CVE-2025-5915
CVE-2026-0992	low	https://access.redhat.com/security/cve/CVE-2026-0992
CVE-2026-28386	low	https://access.redhat.com/security/cve/CVE-2026-28386
CVE-2023-53160	low	https://access.redhat.com/security/cve/CVE-2023-53160
CVE-2025-10148	low	https://access.redhat.com/security/cve/CVE-2025-10148
CVE-2025-1376	low	https://access.redhat.com/security/cve/CVE-2025-1376
CVE-2026-2297	low	https://access.redhat.com/security/cve/CVE-2026-2297
CVE-2024-7264	low	https://access.redhat.com/security/cve/CVE-2024-7264
CVE-2025-1371	low	https://access.redhat.com/security/cve/CVE-2025-1371
CVE-2026-28389	low	https://access.redhat.com/security/cve/CVE-2026-28389

generated with uds-pk scan compare

| datasource | package | from | to | | ----------- | -------------------- | ------- | ------- | | github-tags | defenseunicorns/zarf | v0.74.2 | v0.75.0 | | github-tags | github/codeql-action | v4.35.1 | v4.35.2 | | github-tags | oras-project/oras | v1.3.1 | v1.3.2 |

renovate Bot added the support-deps label Apr 17, 2026

renovate Bot requested review from a team as code owners April 17, 2026 00:55

renovate Bot force-pushed the renovate/uds-common-support-dependencies branch from 620191b to 33cd58d Compare April 18, 2026 14:53

renovate Bot changed the title ~~chore(deps): update support-deps to v0.75.0~~ chore(deps): update uds common support dependencies Apr 18, 2026

renovate Bot force-pushed the renovate/uds-common-support-dependencies branch from 33cd58d to 6869d56 Compare April 21, 2026 17:55

codyshoffner approved these changes Apr 22, 2026

View reviewed changes

codyshoffner merged commit 45de06c into main Apr 22, 2026
29 of 36 checks passed

codyshoffner deleted the renovate/uds-common-support-dependencies branch April 22, 2026 15:35

github-actions Bot mentioned this pull request Apr 22, 2026

chore(main): release 1.24.6 #654

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update uds common support dependencies#653

chore(deps): update uds common support dependencies#653
codyshoffner merged 1 commit intomainfrom
renovate/uds-common-support-dependencies

renovate Bot commented Apr 17, 2026 •

edited

Loading

Uh oh!

github-actions Bot commented Apr 17, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

renovate Bot commented Apr 17, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v0.75.0

⚠ BREAKING CHANGES

Features

Bug Fixes

What's Changed

🚀 Updates

📦 Dependencies

v4.35.2

v1.3.2

Changelog

Verification

Configuration

Uh oh!

github-actions Bot commented Apr 17, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

quay.io/rfcurated/nginx 1.29.8-slim-jammy-rfcurated-rfhardened -> 1.29.8-slim-jammy-rfcurated-rfhardened

nginx 1.29.8 -> 1.29.8

registry1.dso.mil/ironbank/opensource/nginx/nginx 1.29.8 -> 1.29.8

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate Bot commented Apr 17, 2026 •

edited

Loading

`v0.75.0`

`v4.35.2`

`v1.3.2`

github-actions Bot commented Apr 17, 2026 •

edited

Loading

quay.io/rfcurated/nginx `1.29.8-slim-jammy-rfcurated-rfhardened` -> `1.29.8-slim-jammy-rfcurated-rfhardened`

nginx `1.29.8` -> `1.29.8`

registry1.dso.mil/ironbank/opensource/nginx/nginx `1.29.8` -> `1.29.8`