Skip to main content
New to Testkube? Unleash the power of cloud native testing in Kubernetes with Testkube. Get Started >

testkube-tw-toolkit-2.5.0_linux_amd64

digestsha256:758e0b98c0e2d676e346ed82346513dd09865bf4147da551e9697ad685e2575e
vulnerabilitiescritical: 0 high: 12 medium: 11 low: 5
platformlinux/amd64
size52 MB
packages206
critical: 0 high: 6 medium: 1 low: 1 git 2.45.3-r0 (apk)

pkg:apk/alpine/git@2.45.3-r0?arch=x86_64&distro=alpine-3.20.6

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--48385

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.023%
EPSS Percentile5th percentile
Description

high : CVE--2025--46334

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.015%
EPSS Percentile2nd percentile
Description

high : CVE--2025--27614

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.014%
EPSS Percentile2nd percentile
Description

high : CVE--2025--46835

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.016%
EPSS Percentile3rd percentile
Description

high : CVE--2025--48384

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.737%
EPSS Percentile72nd percentile
Description

high : CVE--2024--52005

Affected range<=2.45.3-r0
Fixed versionNot Fixed
EPSS Score0.142%
EPSS Percentile35th percentile
Description

medium : CVE--2025--48386

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.011%
EPSS Percentile1st percentile
Description

low : CVE--2025--27613

Affected range<2.45.4-r0
Fixed version2.45.4-r0
EPSS Score0.020%
EPSS Percentile5th percentile
Description
critical: 0 high: 2 medium: 4 low: 0 libcurl 8.12.1-r0 (apk)

pkg:apk/alpine/libcurl@8.12.1-r0?arch=x86_64&distro=alpine-3.20.6&upstream=curl

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--9086

Affected range<8.14.1-r2
Fixed version8.14.1-r2
EPSS Score0.095%
EPSS Percentile27th percentile
Description

high : CVE--2025--5399

Affected range<8.14.1-r0
Fixed version8.14.1-r0
EPSS Score0.064%
EPSS Percentile20th percentile
Description

medium : CVE--2025--4947

Affected range<8.14.0-r0
Fixed version8.14.0-r0
EPSS Score0.017%
EPSS Percentile3rd percentile
Description

medium : CVE--2025--10148

Affected range<8.14.1-r2
Fixed version8.14.1-r2
EPSS Score0.070%
EPSS Percentile21st percentile
Description

medium : CVE--2025--5025

Affected range<8.14.0-r0
Fixed version8.14.0-r0
EPSS Score0.018%
EPSS Percentile4th percentile
Description

medium : CVE--2025--10966

Affected range<=8.12.1-r0
Fixed versionNot Fixed
EPSS Score0.017%
EPSS Percentile3rd percentile
Description
critical: 0 high: 1 medium: 2 low: 0 libssl3 3.3.3-r0 (apk)

pkg:apk/alpine/libssl3@3.3.3-r0?arch=x86_64&distro=alpine-3.20.6&upstream=openssl

# tw-toolkit.Dockerfile (24:24)
FROM ${ALPINE_IMAGE}

high : CVE--2025--9230

Affected range<3.3.5-r0
Fixed version3.3.5-r0
EPSS Score0.026%
EPSS Percentile6th percentile
Description

medium : CVE--2025--9231

Affected range<3.3.5-r0
Fixed version3.3.5-r0
EPSS Score0.016%
EPSS Percentile3rd percentile
Description

medium : CVE--2025--9232

Affected range<3.3.5-r0
Fixed version3.3.5-r0
EPSS Score0.027%
EPSS Percentile7th percentile
Description
critical: 0 high: 1 medium: 2 low: 0 golang.org/x/crypto 0.41.0 (golang)

pkg:golang/golang.org/x/crypto@0.41.0

# tw-toolkit.Dockerfile (28:28)
COPY --from=build /app/testworkflow-init /init

high : CVE--2025--47913

Affected range<0.43.0
Fixed version0.43.0
EPSS Score0.018%
EPSS Percentile4th percentile
Description

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

medium 5.3: CVE--2025--58181 Allocation of Resources Without Limits or Throttling

Affected range<0.45.0
Fixed version0.45.0
CVSS Score5.3
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score0.082%
EPSS Percentile24th percentile
Description

SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.

medium 5.3: CVE--2025--47914 Out-of-bounds Read

Affected range<0.45.0
Fixed version0.45.0
CVSS Score5.3
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score0.051%
EPSS Percentile16th percentile
Description

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.

critical: 0 high: 1 medium: 1 low: 0 c-ares 1.33.1-r0 (apk)

pkg:apk/alpine/c-ares@1.33.1-r0?arch=x86_64&distro=alpine-3.20.6

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--31498

Affected range<=1.33.1-r0
Fixed versionNot Fixed
EPSS Score0.135%
EPSS Percentile34th percentile
Description

medium : CVE--2025--62408

Affected range<=1.33.1-r0
Fixed versionNot Fixed
EPSS Score0.040%
EPSS Percentile12th percentile
Description
critical: 0 high: 1 medium: 0 low: 0 libexpat 2.7.0-r0 (apk)

pkg:apk/alpine/libexpat@2.7.0-r0?arch=x86_64&distro=alpine-3.20.6&upstream=expat

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

high : CVE--2025--59375

Affected range<2.7.2-r0
Fixed version2.7.2-r0
EPSS Score0.131%
EPSS Percentile33rd percentile
Description
critical: 0 high: 0 medium: 1 low: 2 openssh-keygen 9.7_p1-r5 (apk)

pkg:apk/alpine/openssh-keygen@9.7_p1-r5?arch=x86_64&distro=alpine-3.20.6&upstream=openssh

# tw-toolkit.Dockerfile (25:25)
RUN apk --no-cache add ca-certificates libssl3 git openssh-client

medium : CVE--2025--32728

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.048%
EPSS Percentile15th percentile
Description

low : CVE--2025--61985

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.011%
EPSS Percentile1st percentile
Description

low : CVE--2025--61984

Affected range<=9.7_p1-r5
Fixed versionNot Fixed
EPSS Score0.006%
EPSS Percentile0th percentile
Description
critical: 0 high: 0 medium: 0 low: 2 ssl_client 1.36.1-r29 (apk)

pkg:apk/alpine/ssl_client@1.36.1-r29?arch=x86_64&distro=alpine-3.20.6&upstream=busybox

# tw-toolkit.Dockerfile (24:24)
FROM ${ALPINE_IMAGE}

low : CVE--2025--46394

Affected range<1.36.1-r31
Fixed version1.36.1-r31
EPSS Score0.017%
EPSS Percentile3rd percentile
Description

low : CVE--2024--58251

Affected range<1.36.1-r31
Fixed version1.36.1-r31
EPSS Score0.020%
EPSS Percentile4th percentile
Description