Bump alpine in images for CVE-2025-9230

The CVE-2025-9230 appears to present little, if no risk to
openfaas customers, however this is flagged as high by automated
tools, so is being patched by updating the alpine image.

Signed-off-by: Alex Ellis (OpenFaaS Ltd) <alexellis2@gmail.com>

Author: alexellis

chart/openfaas/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 type: application
 description: OpenFaaS - Serverless Functions Made Simple
 name: openfaas
-version: 14.2.133
+version: 14.2.134
 sources:
 - https://github.com/openfaas/faas
 - https://github.com/openfaas/faas-netes

chart/openfaas/values.yaml

@@ -64,7 +64,7 @@ functions:
     failureThreshold: 3
 
 gatewayPro:
-  image: ghcr.io/openfaasltd/gateway:0.5.8
+  image: ghcr.io/openfaasltd/gateway:0.5.9
   pprof: false
 
 gateway:
@@ -152,7 +152,7 @@ eventWorker:
 
 # For OpenFaaS Pro and the Function CRD
 operator:
-  image: ghcr.io/openfaasltd/faas-netes:0.5.83
+  image: ghcr.io/openfaasltd/faas-netes:0.5.84
   create: false
   logs:
     debug: false
@@ -199,7 +199,7 @@ operator:
     successThreshold: 1
 
 faasnetesPro:
-  image: ghcr.io/openfaasltd/faas-netes:0.5.83
+  image: ghcr.io/openfaasltd/faas-netes:0.5.84
   logs:
     debug: false
     format: "console"
@@ -220,7 +220,7 @@ faasnetes:
 #
 # The Jetstream queue-worker is the default queue-worker for OpenFaaS Pro.
 jetstreamQueueWorker:
-  image: ghcr.io/openfaasltd/jetstream-queue-worker:0.4.11
+  image: ghcr.io/openfaasltd/jetstream-queue-worker:0.4.12
   mode: "static"
   consumer:
     inactiveThreshold: "30s"
@@ -286,7 +286,7 @@ queueWorker:
 ## Advanced auto-scaler for scaling functions on RPS, CPU and in-flight requests
 ## Includes: scale to zero
 autoscaler:
-  image: ghcr.io/openfaasltd/autoscaler:0.3.25
+  image: ghcr.io/openfaasltd/autoscaler:0.3.26
 
   # Default value for "com.openfaas.scale.target" when not set via label
   defaultTarget: 50

chart/pro-builder/Chart.yaml

@@ -1,7 +1,7 @@
 apiVersion: v1
 description: Build OpenFaaS functions via a REST API
 name: pro-builder
-version: 0.6.3
+version: 0.6.4
 sources:
 - https://github.com/openfaas/faas-netes
 home: https://www.openfaas.com

chart/pro-builder/values.yaml

@@ -34,7 +34,7 @@ proBuilder:
 
 buildkitRootless:
   # Image used when running buildkit in rootless mode.
-  image: moby/buildkit:v0.26.3-rootless
+  image: moby/buildkit:v0.27.0-rootless
 
 # buildkit.image is for the buildkit daemon
 # Check for the latest release on GitHub: https://github.com/moby/buildkit/releases
@@ -49,7 +49,7 @@ buildkit:
   # nodepool for the function builder pods, which is recycled often
   # through the use of spot instances or preemptive VMs.
   #
-  # image: moby/buildkit:v0.26.3
+  # image: moby/buildkit:v0.27.0
   # rootless: false
   # securityContext:
   #   runAsUser: 0
@@ -59,7 +59,7 @@ buildkit:
   # For a rootless configuration, preferred, if the configuration
   # and Kernel version of your Kubernetes nodes supports it
   #
-  image: moby/buildkit:v0.26.3
+  image: moby/buildkit:v0.27.0
   rootless: true
 
   resources:

chart/queue-worker/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 name: queue-worker
 description: Dedicated queue-worker for OpenFaaS using JetStream
 type: application
-version: 0.2.26
+version: 0.2.27
 keywords:
 - openfaas
 - jetstream

chart/queue-worker/values.yaml

@@ -4,7 +4,7 @@
 # You will need to create a license named "openfaas-license" - see the
 # chart README for detailed instructions.
 
-image: ghcr.io/openfaasltd/jetstream-queue-worker:0.4.11
+image: ghcr.io/openfaasltd/jetstream-queue-worker:0.4.12
 
 replicas: 1