kubernetes-sigs
diff --git a/‎.github/workflows/trivy.yaml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/trivy.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎go.mod
Lines changed: 1 addition & 1 deletion b/‎go.mod
Lines changed: 1 addition & 1 deletion
diff --git a/‎go.sum
Lines changed: 2 additions & 2 deletions b/‎go.sum
Lines changed: 2 additions & 2 deletions
diff --git a/‎pkg/blobplugin/Dockerfile
Lines changed: 3 additions & 1 deletion b/‎pkg/blobplugin/Dockerfile
Lines changed: 3 additions & 1 deletion
diff --git a/‎vendor/k8s.io/kubernetes/pkg/apis/core/annotation_key_constants.go
Lines changed: 2 additions & 2 deletions b/‎vendor/k8s.io/kubernetes/pkg/apis/core/annotation_key_constants.go
Lines changed: 2 additions & 2 deletions
diff --git a/‎vendor/k8s.io/kubernetes/pkg/apis/core/validation/validation.go
Lines changed: 11 additions & 7 deletions b/‎vendor/k8s.io/kubernetes/pkg/apis/core/validation/validation.go
Lines changed: 11 additions & 7 deletions
diff --git a/‎vendor/k8s.io/kubernetes/test/utils/image/manifest.go
Lines changed: 2 additions & 2 deletions b/‎vendor/k8s.io/kubernetes/test/utils/image/manifest.go
Lines changed: 2 additions & 2 deletions
diff --git a/‎vendor/modules.txt
Lines changed: 1 addition & 1 deletion b/‎vendor/modules.txt
Lines changed: 1 addition & 1 deletion
@@ -28,5 +28,5 @@ jobs:
           exit-code: '1'
           ignore-unfixed: true
           vuln-type: 'os,library'
-          severity: 'CRITICAL,HIGH'
+          severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
 
@@ -25,7 +25,7 @@ require (
 	k8s.io/client-go v0.22.1
 	k8s.io/component-base v0.22.1
 	k8s.io/klog/v2 v2.10.0
-	k8s.io/kubernetes v1.21.0
+	k8s.io/kubernetes v1.21.1
 	k8s.io/mount-utils v0.0.0
 	k8s.io/utils v0.0.0-20210707171843-4b05e18ac7d9
 	sigs.k8s.io/cloud-provider-azure v0.7.4
 
@@ -1138,8 +1138,8 @@ k8s.io/kubectl v0.21.0 h1:WZXlnG/yjcE4LWO2g6ULjFxtzK6H1TKzsfaBFuVIhNg=
 k8s.io/kubectl v0.21.0/go.mod h1:EU37NukZRXn1TpAkMUoy8Z/B2u6wjHDS4aInsDzVvks=
 k8s.io/kubelet v0.21.0 h1:1VUfM5vKqLPlWFI0zee6fm9kwIZ/UEOGCodVFN+OZrg=
 k8s.io/kubelet v0.21.0/go.mod h1:G5ZxMTVev9t4bhmsSxDAWhH6wXDYEVHVVFyYsw4laR4=
-k8s.io/kubernetes v1.21.0 h1:LUUQgdFsKB+wVgKPUapmXjkvvJHSLN53CuQwre4c+mM=
-k8s.io/kubernetes v1.21.0/go.mod h1:Yx6XZ8zalyqEk7but+j4+5SvLzdyH1eeqZ4cwO+5dD4=
+k8s.io/kubernetes v1.21.1 h1:U7cVOSdG+sMNOfL9XlenBV7avSBDHyWPE66gWnnYIIc=
+k8s.io/kubernetes v1.21.1/go.mod h1:ef++isEL1PW0taH6z7DXrSztPglrZ7jQhyvcMEtm0gQ=
 k8s.io/legacy-cloud-providers v0.21.0/go.mod h1:bNxo7gDg+PGkBmT/MFZswLTWdSWK9kAlS1s8DJca5q4=
 k8s.io/metrics v0.21.0/go.mod h1:L3Ji9EGPP1YBbfm9sPfEXSpnj8i24bfQbAFAsW0NueQ=
 k8s.io/mount-utils v0.21.1 h1:uYf6zlKaaoUcPhWn6MElLkWf/f7UQgtkPZteumgwDbA=
 
@@ -15,7 +15,9 @@
 FROM k8s.gcr.io/build-image/debian-base:bullseye-v1.0.0
 COPY ./_output/blobplugin /blobplugin
 RUN apt update && apt-mark unhold libcap2
-RUN clean-install ca-certificates libfuse-dev libcurl4-gnutls-dev libgnutls28-dev uuid-dev libgcrypt20-dev util-linux mount udev wget e2fsprogs nfs-common libssl1.1
+RUN clean-install ca-certificates libfuse-dev libcurl4-gnutls-dev libgnutls28-dev uuid-dev libgcrypt20-dev util-linux mount udev wget e2fsprogs nfs-common
+# install updated packages to fix CVE issues
+RUN clean-install libssl1.1 libgssapi-krb5-2 libk5crypto3 libkrb5-3 libkrb5support0
 RUN mkdir /blobfuse-proxy/
 COPY ./_output/blobfuse-proxy.deb /blobfuse-proxy/
 # for compatibility, remove this after v1.6.0 release (todo)
 
@@ -812,7 +812,7 @@ k8s.io/kubectl/pkg/scale
 k8s.io/kubectl/pkg/util/podutils
 # k8s.io/kubelet v0.0.0 => k8s.io/kubelet v0.21.0
 k8s.io/kubelet/pkg/apis/stats/v1alpha1
-# k8s.io/kubernetes v1.21.0
+# k8s.io/kubernetes v1.21.1
 ## explicit
 k8s.io/kubernetes/pkg/api/legacyscheme
 k8s.io/kubernetes/pkg/api/service