Andrés Moreno
Andrés Moreno
Signed-off-by: andresmascl Fixing critical CVEs in latest kserve/art-explainer version Comparing this to latest stable `kserve/aix-explainer` image:  **What this PR does / why we need it**: **Which issue(s) this PR...
Signed-off-by: andresmascl **What this PR does / why we need it**: Fixing critical CVEs in latest `art-explainer` version of `kserve/art-explainer` image Comparing this to latest stable kserve/art-explainer image:  ...
/kind bug **What steps did you take and what happened:** I ran the `anchore` service against the image. The image is found in the `python-3.7.12` package  **What did you...
/kind bug **What steps did you take and what happened:** This CVE is reported by the `anchore` service. It is located in `python-3.8.12 ` package  **What did you expect...
### Environment Critical CVEs reported by the `anchore` scanning service: CVE-2020-36242, GHSA-57wx-m983-2f88, GHSA-8vj2-vxx3-667w, GHSA-9j59-75qj-795w , GHSA-cq27-v7xp-c356, GHSA-h6gw-r52c-724r , GHSA-pw3c-h7wp-cvhx * KFP version: `1.8.4` ### Materials and Reference  --- Impacted...
### Environment * How did you deploy Kubeflow Pipelines (KFP)? Critical Vulnerabilities reported by `anchore` : CVE-2015-20107, CVE-2017-18342, CVE-2021-30473, CVE-2021-30474, CVE-2021-30475, GHSA-8q59-q68h-6hv4 * KFP version: `1.8.4` ### Materials and Reference...
### Environment Critical CVEs found by the `anchore` scanning service: CVE-2020-3681, CVE-2022-28391, GHSA-896r-f27r-55mw, GHSA-xvch-5gv4-984h, * KFP version: `1.8.4` ### Materials and Reference    --- Impacted by this bug?...