keda-2.16/2.16.1-r5: cve remediation (#47288)

octo-sts[bot] · web-flow · commit 62a9806d2e82 · 2025-03-20T19:06:35.000Z
keda-2.16/2.16.1-r5: fix GHSA-93mq-9ffx-83m2 Advisory data: https://github.com/wolfi-dev/advisories/blob/main/keda-2.16.advisories.yaml Source code for this service: https://go/cve-remedy-automation-source Logs for this execution: https://go/cve-remedy-automation-logs Docs for this service: _(not provided yet)_ Co-authored-by: octo-sts[bot] <157150467+octo-sts@users.noreply.github.com>
diff --git a/keda-2.16.yaml b/keda-2.16.yaml
@@ -1,7 +1,7 @@
 package:
   name: keda-2.16
   version: 2.16.1
-  epoch: 6
+  epoch: 7
   description: KEDA is a Kubernetes-based Event Driven Autoscaling component. It provides event driven scale for any container running in Kubernetes
   copyright:
     - license: Apache-2.0
@@ -35,6 +35,7 @@ pipeline:
         golang.org/x/oauth2@v0.27.0
         golang.org/x/crypto@v0.35.0
         golang.org/x/net@v0.36.0
+        github.com/expr-lang/expr@v1.17.0
 
   - runs: |
       ARCH=$(go env GOARCH) make build
