Skip to content

to be continuous

GITLEAKS_IMAGE

to-be-continuous/doc

docker.io/zricethezav/gitleaks:latest (alpine 3.22.2)¶

Trivy Image Scan

Image: docker.io/zricethezav/gitleaks:latest (alpine 3.22.2)
Scan date: 2025-12-14

docker.io/zricethezav/gitleaks:latest (alpine 3.22.2) (alpine)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
busybox	CVE-2024-58251	MEDIUM	1.37.0-r19	1.37.0-r20	http://www.openwall.com/lists/oss-security/2025/04/23/6 https://bugs.busybox.net/show_bug.cgi?id=15922 https://www.busybox.net https://www.busybox.net/downloads/ https://www.cve.org/CVERecord?id=CVE-2024-58251
busybox	CVE-2025-46394	LOW	1.37.0-r19	1.37.0-r20	http://www.openwall.com/lists/oss-security/2025/04/23/5 http://www.openwall.com/lists/oss-security/2025/04/24/3 https://bugs.busybox.net/show_bug.cgi?id=16018 https://lists.busybox.net/pipermail/busybox/2024-July/090806.html https://lists.busybox.net/pipermail/busybox/2024-July/090814.html https://www.busybox.net https://www.busybox.net/downloads/ https://www.cve.org/CVERecord?id=CVE-2025-46394 https://www.openwall.com/lists/oss-security/2025/04/23/1
busybox-binsh	CVE-2024-58251	MEDIUM	1.37.0-r19	1.37.0-r20	http://www.openwall.com/lists/oss-security/2025/04/23/6 https://bugs.busybox.net/show_bug.cgi?id=15922 https://www.busybox.net https://www.busybox.net/downloads/ https://www.cve.org/CVERecord?id=CVE-2024-58251
busybox-binsh	CVE-2025-46394	LOW	1.37.0-r19	1.37.0-r20	http://www.openwall.com/lists/oss-security/2025/04/23/5 http://www.openwall.com/lists/oss-security/2025/04/24/3 https://bugs.busybox.net/show_bug.cgi?id=16018 https://lists.busybox.net/pipermail/busybox/2024-July/090806.html https://lists.busybox.net/pipermail/busybox/2024-July/090814.html https://www.busybox.net https://www.busybox.net/downloads/ https://www.cve.org/CVERecord?id=CVE-2025-46394 https://www.openwall.com/lists/oss-security/2025/04/23/1
c-ares	CVE-2025-62408	MEDIUM	1.34.5-r0	1.34.6-r0	https://access.redhat.com/security/cve/CVE-2025-62408 https://github.com/c-ares/c-ares/commit/714bf5675c541bd1e668a8db8e67ce012651e618 https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5 https://nvd.nist.gov/vuln/detail/CVE-2025-62408 https://ubuntu.com/security/notices/USN-7925-1 https://www.cve.org/CVERecord?id=CVE-2025-62408
openssh-client-common	CVE-2025-61984	MEDIUM	10.0_p1-r9	10.0_p1-r10	http://www.openwall.com/lists/oss-security/2025/10/07/1 http://www.openwall.com/lists/oss-security/2025/10/12/1 https://access.redhat.com/security/cve/CVE-2025-61984 https://dgl.cx/2025/10/bash-a-newline-ssh-proxycommand-cve-2025-61984 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61984 https://www.cve.org/CVERecord?id=CVE-2025-61984 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1 https://www.vicarius.io/vsociety/posts/cve-2025-61984-detection-script-remote-code-execution-vulnerability-affecting-openssh https://www.vicarius.io/vsociety/posts/cve-2025-61984-mitigation-script-remote-code-execution-vulnerability-affecting-openssh
openssh-client-common	CVE-2025-61985	MEDIUM	10.0_p1-r9	10.0_p1-r10	https://access.redhat.com/security/cve/CVE-2025-61985 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61985 https://www.cve.org/CVERecord?id=CVE-2025-61985 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1
openssh-client-default	CVE-2025-61984	MEDIUM	10.0_p1-r9	10.0_p1-r10	http://www.openwall.com/lists/oss-security/2025/10/07/1 http://www.openwall.com/lists/oss-security/2025/10/12/1 https://access.redhat.com/security/cve/CVE-2025-61984 https://dgl.cx/2025/10/bash-a-newline-ssh-proxycommand-cve-2025-61984 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61984 https://www.cve.org/CVERecord?id=CVE-2025-61984 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1 https://www.vicarius.io/vsociety/posts/cve-2025-61984-detection-script-remote-code-execution-vulnerability-affecting-openssh https://www.vicarius.io/vsociety/posts/cve-2025-61984-mitigation-script-remote-code-execution-vulnerability-affecting-openssh
openssh-client-default	CVE-2025-61985	MEDIUM	10.0_p1-r9	10.0_p1-r10	https://access.redhat.com/security/cve/CVE-2025-61985 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61985 https://www.cve.org/CVERecord?id=CVE-2025-61985 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1
openssh-keygen	CVE-2025-61984	MEDIUM	10.0_p1-r9	10.0_p1-r10	http://www.openwall.com/lists/oss-security/2025/10/07/1 http://www.openwall.com/lists/oss-security/2025/10/12/1 https://access.redhat.com/security/cve/CVE-2025-61984 https://dgl.cx/2025/10/bash-a-newline-ssh-proxycommand-cve-2025-61984 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61984 https://www.cve.org/CVERecord?id=CVE-2025-61984 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1 https://www.vicarius.io/vsociety/posts/cve-2025-61984-detection-script-remote-code-execution-vulnerability-affecting-openssh https://www.vicarius.io/vsociety/posts/cve-2025-61984-mitigation-script-remote-code-execution-vulnerability-affecting-openssh
openssh-keygen	CVE-2025-61985	MEDIUM	10.0_p1-r9	10.0_p1-r10	https://access.redhat.com/security/cve/CVE-2025-61985 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61985 https://www.cve.org/CVERecord?id=CVE-2025-61985 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1
ssl_client	CVE-2024-58251	MEDIUM	1.37.0-r19	1.37.0-r20	http://www.openwall.com/lists/oss-security/2025/04/23/6 https://bugs.busybox.net/show_bug.cgi?id=15922 https://www.busybox.net https://www.busybox.net/downloads/ https://www.cve.org/CVERecord?id=CVE-2024-58251
ssl_client	CVE-2025-46394	LOW	1.37.0-r19	1.37.0-r20	http://www.openwall.com/lists/oss-security/2025/04/23/5 http://www.openwall.com/lists/oss-security/2025/04/24/3 https://bugs.busybox.net/show_bug.cgi?id=16018 https://lists.busybox.net/pipermail/busybox/2024-July/090806.html https://lists.busybox.net/pipermail/busybox/2024-July/090814.html https://www.busybox.net https://www.busybox.net/downloads/ https://www.cve.org/CVERecord?id=CVE-2025-46394 https://www.openwall.com/lists/oss-security/2025/04/23/1
No Misconfigurations found

usr/bin/gitleaks (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/nwaples/rardecode/v2	CVE-2025-11579	MEDIUM	v2.1.0	2.2.0	https://access.redhat.com/security/cve/CVE-2025-11579 https://github.com/nwaples/rardecode https://github.com/nwaples/rardecode/commit/52fb4e825c936636f251f7e7deded39ab11df9a9 https://nvd.nist.gov/vuln/detail/CVE-2025-11579 https://pkg.go.dev/vuln/GO-2025-4020 https://www.cve.org/CVERecord?id=CVE-2025-11579
github.com/ulikunitz/xz	CVE-2025-58058	MEDIUM	v0.5.12	0.5.15	https://access.redhat.com/security/cve/CVE-2025-58058 https://github.com/ulikunitz/xz https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2 https://github.com/ulikunitz/xz/security/advisories/GHSA-jc7w-c686-c4v9 https://nvd.nist.gov/vuln/detail/CVE-2025-58058 https://www.cve.org/CVERecord?id=CVE-2025-58058
golang.org/x/crypto	CVE-2025-47914	MEDIUM	v0.35.0	0.45.0	https://go.dev/cl/721960 https://go.dev/issue/76364 https://go.googlesource.com/crypto https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA https://nvd.nist.gov/vuln/detail/CVE-2025-47914 https://pkg.go.dev/vuln/GO-2025-4135
golang.org/x/crypto	CVE-2025-58181	MEDIUM	v0.35.0	0.45.0	https://go.dev/cl/721961 https://go.dev/issue/76363 https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA https://nvd.nist.gov/vuln/detail/CVE-2025-58181 https://pkg.go.dev/vuln/GO-2025-4134
stdlib	CVE-2025-61729	HIGH	v1.25.4	1.24.11, 1.25.5	https://access.redhat.com/security/cve/CVE-2025-61729 https://go.dev/cl/725920 https://go.dev/issue/76445 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61729 https://pkg.go.dev/vuln/GO-2025-4155 https://www.cve.org/CVERecord?id=CVE-2025-61729
stdlib	CVE-2025-61727	MEDIUM	v1.25.4	1.24.11, 1.25.5	https://go.dev/cl/723900 https://go.dev/issue/76442 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61727 https://pkg.go.dev/vuln/GO-2025-4175
No Misconfigurations found