Various MongoDB operator images contain underlying packages vulnerabilities

[TalZiv]

Hi,

Some of MongoDB operator components images contain fixable CVEs, For example:

• MongoDB Agent - https://quay.io/repository/mongodb/mongodb-agent?tab=tags)](https://quay.io/repository/mongodb/mongodb-agent/manifest/sha256:393b81f00a48d99d42f01a066cde0274d30df2111776e9e5f220bce77da8516c?tab=vulnerabilities&fixable=true
• readinessprobe -https://quay.io/repository/mongodb/mongodb-kubernetes-readinessprobe/manifest/sha256:46529045a457979b39b85c910fb452d006f163b96c77aa40f51c5592a94d65e5?tab=vulnerabilities&fixable=true
• Operator - https://quay.io/repository/mongodb/mongodb-kubernetes-operator/manifest/sha256:6e8a81f2bef8bf7baf047ba8aa85942ef7d7d29690c5639d90ea705f26e6f466?tab=vulnerabilities&fixable=true

Some are built and pushed hourly and some were built 6 months ago.

Is there a plan or a timeline for addressing the vulnerabilities in the images?

[github-actions]

This issue is being marked stale because it has been open for 60 days with no activity. Please comment if this issue is still affecting you. If there is no change, this issue will be closed in 30 days.