Closed matt-domsch-sp closed 9 months ago
I have addressed the version, and not invoked the unit test in the Docker build. I also confirm that this image no longer reports any vulnerabilities by the Wiz scanning tool.
Thanks, Matt
@matt-domsch-sp Do you mind rebasing? I've fixed the broken precommit workflow in #37.
rebased onto main.
Summary
Due to 441 reported CVEs in the docker.io/kong/httpbin:latest image (Ubuntu focal packages and python libraries), I found it necessary to update the base OS to ubuntu:latest. Doing so brings in Python 3.10 and updated pipenv. To resolve the python library CVEs, update the dependencies which include werkzeug 2.3.7 which necessitates a few minor changes to the application. Removing (unused) meinheld resolves another CVE.
Full changelog
Testing
CVEs addressed