Resolved by a version upgrade to 0.5.48 > https://build.opensuse.org/request/show/1170919 Assigning back to security team.