### Terraform Version ```shell Compiled and Tested against these versions below. - < 1.10.5 ``` ### Terraform Configuration Files ... ### Debug Output ### 1.10.5  ### Expected Behavior No vulnerabilities found ### Actual Behavior Multiple vulnerabilities found | Library | Vulnerability | Severity | Status | Installed Version | Fixed Version | Title | |------------------|----------------|----------|--------|-------------------|---------------|-------------------------------------------------------------------------------| | golang.org/x/crypto | CVE-2024-45337 | CRITICAL | fixed | v0.27.0 | 0.31.0 | golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto https://avd.aquasec.com/nvd/cve-2024-45337 | | golang.org/x/net | CVE-2024-45338 | HIGH | | v0.29.0 | 0.33.0 | golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html https://avd.aquasec.com/nvd/cve-2024-45338 | ### Steps to Reproduce 1. Run Trivy against the container containing the terraform cli. ### Additional Context Hoping the next version is vulnerability-free and secure for production CI/CD, aligning with my organization's security guidelines. ### References _No response_ ### Generative AI / LLM assisted development? _No response_