search

miracum / fhir-gateway

A thin layer between FHIR REST clients and resource processing pipelines.
Apache License 2.0
13 stars 7 forks source link

chore(deps): update gcr.io/distroless/java21-debian12:nonroot docker digest to 68e1197 #135

Closed renovate[bot] closed 7 months ago

renovate[bot] commented 8 months ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
gcr.io/distroless/java21-debian12 final digest 712c383 -> 68e1197

Configuration

📅 Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

github-actions[bot] commented 8 months ago

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 4 0 0.04s
✅ DOCKERFILE hadolint 2 0 0.11s
✅ EDITORCONFIG editorconfig-checker 66 0 0.27s
✅ GROOVY npm-groovy-lint 2 0 11.88s
✅ JAVA checkstyle 18 0 9.09s
✅ JSON eslint-plugin-jsonc 5 0 2.85s
✅ JSON jsonlint 5 0 0.27s
✅ JSON prettier 5 0 2.1s
✅ JSON v8r 5 0 3.75s
✅ MARKDOWN markdownlint 2 0 0.83s
✅ PYTHON bandit 1 0 0.95s
✅ PYTHON black 1 0 0.6s
✅ PYTHON flake8 1 0 0.42s
✅ PYTHON isort 1 0 0.27s
✅ PYTHON mypy 1 0 7.38s
✅ PYTHON ruff 1 0 0.03s
✅ REPOSITORY checkov yes no 16.74s
✅ REPOSITORY gitleaks yes no 0.79s
✅ REPOSITORY git_diff yes no 0.02s
✅ REPOSITORY grype yes no 13.48s
✅ REPOSITORY kics yes no 6.93s
✅ REPOSITORY secretlint yes no 1.18s
✅ REPOSITORY syft yes no 1.82s
✅ REPOSITORY trivy yes no 9.14s
✅ REPOSITORY trivy-sbom yes no 4.58s
✅ REPOSITORY trufflehog yes no 10.04s
✅ SQL sql-lint 1 0 0.32s
✅ XML xmllint 1 0 0.01s
✅ YAML prettier 17 0 0.89s
✅ YAML yamllint 17 0 0.46s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

_MegaLinter is graciously provided by OX Security_

github-actions[bot] commented 7 months ago

Target ghcr.io/miracum/fhir-gateway:pr-135 (debian 12.5)

Vulnerabilities (17)

Package ID Severity Installed Version Fixed Version
libc6 CVE-2010-4756 LOW 2.36-9+deb12u4
libc6 CVE-2018-20796 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010022 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010023 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010024 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010025 LOW 2.36-9+deb12u4
libc6 CVE-2019-9192 LOW 2.36-9+deb12u4
libexpat1 CVE-2023-52425 HIGH 2.5.0-1
libexpat1 CVE-2024-28757 HIGH 2.5.0-1
libexpat1 CVE-2023-52426 MEDIUM 2.5.0-1
libgcc-s1 CVE-2023-4039 MEDIUM 12.2.0-14
libgcc-s1 CVE-2022-27943 LOW 12.2.0-14
libpng16-16 CVE-2021-4214 LOW 1.6.39-2
libstdc++6 CVE-2023-4039 MEDIUM 12.2.0-14
libstdc++6 CVE-2022-27943 LOW 12.2.0-14
libuuid1 CVE-2022-0563 LOW 2.38.1-5+b1
zlib1g CVE-2023-45853 CRITICAL 1:1.2.13.dfsg-1

No Misconfigurations found

Target Java

Vulnerabilities (1)

Package ID Severity Installed Version Fixed Version
org.springframework:spring-web CVE-2024-22259 HIGH 6.1.4 6.1.5, 6.0.18, 5.3.33

No Misconfigurations found

miracum-bot commented 7 months ago

:tada: This PR is included in version 3.12.12 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: