CVEs affecting projects tracked on Release Alert, from NVD & OSV.
Ingress-nginx `path` sanitization can be bypassed with `log_format` directive.