CVE-2023-2727, CVE-2023-2728: Bypassing policies imposed by the ImagePolicyWebhook and bypassing mountable secrets policy imposed by the ServiceAccount admission plugin

[pacoxu]

What happened?

v1.24.15

What did you expect to happen?

v1.24.15

How can we reproduce it (as minimally and precisely as possible)?

NA

Anything else we need to know?

No response

[github-actions]

Hi @pacoxu,
Thanks for opening an issue!
We will look into it as soon as possible.

Details

Instructions for interacting with me using comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the [gh-ci-bot](https://github.com/wzshiming/gh-ci-bot) repository.