| go.opentelemetry.io/otel/sdk | v1.35.0 | HIGH | GHSA-9h8m-3fm2-qjrq | 1.40.0 | OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking |
| golang.org/x/crypto | v0.37.0 | MEDIUM | GHSA-j5w8-q4qc-rx2x | 0.45.0 | golang.org/x/crypto/ssh allows an attacker to cause unbounded memory consumption |
| github.com/eclipse/paho.mqtt.golang | v1.5.0 | MEDIUM | GHSA-32fw-gq77-f2f2 | 1.5.1 | Eclipse Paho Go MQTT may incorrectly encode strings if length exceeds 65535 bytes |
| golang.org/x/crypto | v0.37.0 | MEDIUM | GHSA-f6x5-jh6r-wrfv | 0.45.0 | golang.org/x/crypto/ssh/agent vulnerable to panic if message is malformed due to out of bounds read |
| filippo.io/edwards25519 | v1.1.0 | LOW | GHSA-fw7p-63qq-7hpr | 1.1.1 | filippo.io/edwards25519 MultiScalarMult produces invalid results or undefined behavior if receiver is not the identity |