Kubescape
v4.0.5SecurityKubescape v4.0.5 is a routine maintenance release: Go toolchain update plus dependency bumps. No new features or bug fixes.
securityUpgrade to pick up Go runtime and dependency CVE fixes
Go version bumps often patch stdlib vulnerabilities (e.g., net/http, crypto) that affect compiled binaries. If you're running Kubescape as a cluster component or in CI pipelines, pull this update. Check your current version with 'kubescape version' and replace the binary or update your container image tag. Low effort, low risk.
enhancementPin to this patch version in your automation
If you're using Kubescape in CI/CD security scanning pipelines, update your pinned version to v4.0.5 to stay current with the dependency graph. This is especially relevant if your org has SCA tooling that flags transitive dependency staleness in scan tooling itself — a common audit finding.
Key changes (3)
- Go version updated to address potential toolchain-level vulnerabilities and compatibility
- Dependency versions bumped across go.mod/go.sum
- No functional changes, API changes, or new features introduced