Vulnerability: CVE-2025-22872 in Go Package

[harangar-gh]

Node-exporter currently uses golang.org/x/net:v0.37.0, which contains the vulnerability CVE-2025-22872 . The vulnerability was reported by the container scanning tool Anchore.

Please update golang.org/x/net package to v0.38.0 or later to remediate this vulnerability.

[SuperQ]

Please do not report raw vulnerability scanner results. They are prone to false positives and cause the Prometheus team toil in verifying. Please verify vulnerability reports and include specific details as to which components are directly exploitable.