/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-jpq9-hx9j-qh8j	CGA-jpq9-hx9j-qh8j	Unknown	gptscript	Under investigation
CGA-pr7r-hr2c-777w	CGA-pr7r-hr2c-777w	Unknown	argo-workflows-3.6	Fixed
CGA-53p7-2vcq-c8h2	CGA-53p7-2vcq-c8h2	Unknown	argo-workflow-executor-4.0	Fixed
CGA-9x22-mhrr-r4p6	CGA-9x22-mhrr-r4p6	Unknown	dapr-injector-fips-1.14	Under investigation
CGA-4j29-8q28-xq28	CGA-4j29-8q28-xq28	Unknown	flux-fips-2.8	Fixed
CGA-f7vg-5gpx-w2h4	CVE-2026-0636	Unknown	logstash-9.1	Under investigation
CGA-xp2h-9jvm-4mv7	CVE-2026-0636	Unknown	logstash-9.1	Under investigation
CGA-x9c7-7gvh-854f	CGA-x9c7-7gvh-854f	Unknown	argo-workflow-executor-3.7	Fixed
CGA-pg8g-jjww-mg3w	CVE-2026-0636	Unknown	camunda-zeebe-8.8	Under investigation
CGA-6m37-63vv-c7fw	CGA-6m37-63vv-c7fw	Unknown	argo-cd-fips-3.3-compat	Under investigation
CGA-w663-v4gw-gj25	CGA-w663-v4gw-gj25	Unknown	grafana-alloy-fips	Fixed
CGA-655c-6593-988h	CVE-2026-0636	Unknown	jenkins-2.541	Under investigation
CGA-q7m9-m3c2-8h4g	CVE-2026-3505	Unknown	jenkins-2.541	Under investigation
CGA-fwmq-jpqx-6qh8	CGA-fwmq-jpqx-6qh8	Unknown	crossplane-2.0-crank	Fixed
CGA-wm6r-fwcf-q957	CGA-wm6r-fwcf-q957	Unknown	external-secrets-operator-2.3	Fixed
CGA-cf88-crmh-rrmw	CGA-cf88-crmh-rrmw	Unknown	gitlab-runner-18.6	Fix not planned

572,222 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company