Closed framar89 closed 1 year ago
@framar89
traefik:v2.8.2
image without any changes and it must be compatible. If it works for you, I will create a PR.
Use the following command to set a new image in CheCluster CR
kubectl patch checluster/eclipse-che --patch '{"spec": {"networking": {"auth": {"gateway": {"deployment": {"containers": [{"name": "gateway", "image": "traefik:v2.8.2"}]}}}}}}' --type=merge -n eclipse-che
Unfortunately traefik:v2.8.2 does not work but I tried traefik:v2.9.5 (released 20 days ago) and it worked.
So, I think you can update to v2.9.5.
traefik:v2.8.2
does not work for me either.
The latest greatest traefik:v2.9.6
works fine for me. I will open a PR to switch to the new image.
Upstream steps (for 7.59):
Downstream steps (for 3.5 - https://issues.redhat.com/browse/CRW-3606):
Summary
Currently the default image version used for traefik is quay.io/eclipse/che--traefik:v2.8.1-4e52a5e2495484f5e19a49edfd2f652b0bce7b3603fa0df545ed90168ffae1c3 which has a critical vulnerability as showed in https://quay.io/repository/eclipse/che--traefik?tab=tags I ran a security scan using Trivy (https://trivy.dev/results/?image=traefik:v2.8.2) for the Dockerhub image traefik:v2.8.2 and it tells that there are no vulnerabilities.
So my questions are:
Thanks
Relevant information
No response