search

k3s-io / klipper-lb

Embedded service load balancer in Klipper
Apache License 2.0
355 stars 41 forks source link

Change alpine base image #17

Closed ryansann closed 3 years ago

ryansann commented 3 years ago

This will fix the warning we get while scanning and give us more reliable vulnerability detection

$ trivy image -s HIGH,CRITICAL rancher/klipper-lb:42b03dd-amd64 
2021-07-20T11:54:23.274-0700    INFO    Detected OS: alpine
2021-07-20T11:54:23.275-0700    INFO    Detecting Alpine vulnerabilities...
2021-07-20T11:54:23.277-0700    INFO    Number of language-specific files: 0
2021-07-20T11:54:23.277-0700    WARN    This OS version is no longer supported by the distribution: alpine 3.8.5
2021-07-20T11:54:23.277-0700    WARN    The vulnerability detection may be insufficient because security updates are not provided

rancher/klipper-lb:ba66be0-amd64 (alpine 3.8.5)
===============================================
Total: 0 (HIGH: 0, CRITICAL: 0)
manuelbuil commented 3 years ago

We are now using a newer Alpine image (3.12), would that fix your problem?

manuelbuil commented 3 years ago

As the alpine image has been updated, I think we can close this one