Adding Advisory GHSA-vhxf-7vqr-mrjg for grafana-image-renderer

wolfi-dev · Feb 16, 2025 · f2db8ab · f2db8ab
1 parent 3363153
commit f2db8ab
Showing 1 changed file with 18 additions and 0 deletions.
diff --git a/grafana-image-renderer.advisories.yaml b/grafana-image-renderer.advisories.yaml
@@ -4,6 +4,24 @@ package:
   name: grafana-image-renderer
 
 advisories:
+  - id: CGA-3gr4-2xr6-89vr
+    aliases:
+      - CVE-2025-26791
+      - GHSA-vhxf-7vqr-mrjg
+    events:
+      - timestamp: 2025-02-16T08:07:43Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: grafana-image-renderer
+            componentID: fafedb5038d3e49c
+            componentName: dompurify
+            componentVersion: 2.5.8
+            componentType: npm
+            componentLocation: /usr/src/app/node_modules/dompurify/package.json
+            scanner: grype
+
   - id: CGA-46v3-9cq9-rx8v
     aliases:
       - CVE-2024-52798