search

SaptarshiSarkar12 / Drifty

Drifty is an Open-Source Interactive File Downloader System built with Java
https://saptarshisarkar12.github.io/Drifty/
Apache License 2.0
171 stars 121 forks source link

Add Copa to patch all docker image vulnerabilities reported by Trivy #627

Closed SaptarshiSarkar12 closed 2 weeks ago

SaptarshiSarkar12 commented 2 weeks ago

Description

Trivy has detected many vulnerabilities for drifty-cli and drifty-gui docker images along with fixed versions for some. So, an automated fixing of those and any future vulnerabilities must be implemented. Copacetic has proven to be the right tool for auto-fixing those vulnerabilities. They also have created a GitHub Actions to automate the fix.

Additional information

For now, some vulnerabilities (might be false positive; not confirmed yet), copa fails to patch the update. Here are some links to issues regarding the same:

Those CVEs have FIPS packages as their fixed versions which might be a clue to the cause of failure of copa.

Do you want to work on this issue?

Yes

github-actions[bot] commented 2 weeks ago

Hello 👋! Thank you very much for raising an issue 🙌! The maintainers will get back to you soon for discussion over the issue! 🚀

Meanwhile you can also discuss about the project in our Discord Server 😀