oxsecurity
diff --git a/‎.automation/build.py‎
Lines changed: 4 additions & 2 deletions b/‎.automation/build.py‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎.automation/generated/linter-helps.json‎
Lines changed: 12 additions & 11 deletions b/‎.automation/generated/linter-helps.json‎
Lines changed: 12 additions & 11 deletions
diff --git a/‎.automation/generated/linter-versions.json‎
Lines changed: 1 addition & 1 deletion b/‎.automation/generated/linter-versions.json‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.trivyignore‎
Lines changed: 11 additions & 1 deletion b/‎.trivyignore‎
Lines changed: 11 additions & 1 deletion
diff --git a/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions
@@ -11,10 +11,10 @@
 import subprocess
 import sys
 from datetime import date, datetime
+from pathlib import Path
 from shutil import copyfile, which
 from typing import Any
 from urllib import parse as parse_urllib
-from pathlib import Path
 
 import git
 import jsonschema
@@ -831,7 +831,9 @@ def generate_linter_dockerfiles():
         logging.info(f"Updated {linters_matrix_file}")
 
     # Write MD file
-    Path(f"{REPO_HOME}/docs/standalone-linters.md").write_text(linters_md + "\n", encoding="utf-8")
+    Path(f"{REPO_HOME}/docs/standalone-linters.md").write_text(
+        linters_md + "\n", encoding="utf-8"
+    )
 
 
 # Automatically generate a test class for each linter class
 
@@ -12,7 +12,7 @@
     "checkstyle": "12.1.0",
     "chktex": "1.7.8",
     "clang-format": "20.1.8",
-    "clippy": "0.1.90",
+    "clippy": "0.1.91",
     "clj-kondo": "2025.10.23",
     "cljstyle": "0.17.642",
     "coffeelint": "5.2.11",
 
@@ -29,7 +29,15 @@ CVE-2025-30204
 CVE-2025-47906
 # https://avd.aquasec.com/nvd/2025/cve-2025-47907/ , not a security issue in MegaLinter context
 CVE-2025-47907
-
+CVE-2025-58187
+CVE-2025-47912
+CVE-2025-58183
+CVE-2025-58185
+CVE-2025-58186
+CVE-2025-58187
+CVE-2025-58188
+CVE-2025-61723
+CVE-2025-61724
 
 # go-git
 CVE-2025-21613
@@ -144,6 +152,8 @@ CVE-2025-7783
 CVE-2025-8959
 # https://avd.aquasec.com/nvd/cve-2025-9288 : sha.js: Missing type checks leading to hash rewind and passing on crafte. Harmless in MegaLinter because Salesforce linters do not connect to Salesforce orgs
 CVE-2025-9288
+# https://avd.aquasec.com/nvd/cve-2025-64118 : node-tar has a race condition leading to uninitialized memory exposure. Not applicable in MegaLinter context
+CVE-2025-64118
 # Dockerfile
 DS001
 DS002
 
@@ -92,6 +92,7 @@ Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-l
   - [ruff](https://github.com/astral-sh/ruff) from 0.14.1 to **0.14.2** on 2025-10-29
   - [rubocop](https://rubocop.org/) from 1.81.1 to **1.81.6** on 2025-10-29
   - [snakemake](https://snakemake.github.io/) from 9.13.3 to **9.13.4** on 2025-10-29
+  - [clippy](https://github.com/rust-lang/rust-clippy) from 0.1.90 to **0.1.91** on 2025-10-31
 <!-- linter-versions-end -->
 
 ## [v9.1.0] - 2025-10-07