Any image built with CanvOS causes a large number of CVEs to be detected by Trivy (Aqua Security scanner) in Harbor.
The Critical CVEs are caused by the yip and luet packages in Kairos having dependencies on outdated go-git and buildkit packages.
yip needs to be updated to use v0.5.11+ of the go-git package
luet needs to be updated to use 0.12.5+ of the buildkit package