sambles
commented
2 years ago I think this is enough to close out https://github.com/OasisLMF/OasisUI/issues/288, adding an extra apt upgrade looks to fix all of the HIGH CVE issues listed by Trivy.
@RolandASc one configuration issue raised by the scanner is running the app container as a non-root user, do you see any issues on the R / R-shiny side which might cause problems running without root permissions?
The scanner is throwing out some odd messages, but I think most others can be safely ignored cve_app_image-2.txt
Add CVE image scanning