search

miracum / fhir-gateway

A thin layer between FHIR REST clients and resource processing pipelines.
Apache License 2.0
13 stars 7 forks source link

chore(deps): update gcr.io/distroless/java21-debian12:nonroot docker digest to 58f89bf #145

Closed renovate[bot] closed 6 months ago

renovate[bot] commented 6 months ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
gcr.io/distroless/java21-debian12 final digest 68e1197 -> 58f89bf

Configuration

📅 Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

github-actions[bot] commented 6 months ago

Target ghcr.io/miracum/fhir-gateway:pr-145 (debian 12.5)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
libc6 CVE-2024-33599 HIGH 2.36-9+deb12u6
libc6 CVE-2024-33600 MEDIUM 2.36-9+deb12u6
libc6 CVE-2024-33601 MEDIUM 2.36-9+deb12u6
libc6 CVE-2024-33602 MEDIUM 2.36-9+deb12u6
libc6 CVE-2010-4756 LOW 2.36-9+deb12u6
libc6 CVE-2018-20796 LOW 2.36-9+deb12u6
libc6 CVE-2019-1010022 LOW 2.36-9+deb12u6
libc6 CVE-2019-1010023 LOW 2.36-9+deb12u6
libc6 CVE-2019-1010024 LOW 2.36-9+deb12u6
libc6 CVE-2019-1010025 LOW 2.36-9+deb12u6
libc6 CVE-2019-9192 LOW 2.36-9+deb12u6
libexpat1 CVE-2023-52425 HIGH 2.5.0-1
libexpat1 CVE-2023-52426 LOW 2.5.0-1
libexpat1 CVE-2024-28757 LOW 2.5.0-1
libgcc-s1 CVE-2023-4039 MEDIUM 12.2.0-14
libgcc-s1 CVE-2022-27943 LOW 12.2.0-14
libpng16-16 CVE-2021-4214 LOW 1.6.39-2
libstdc++6 CVE-2023-4039 MEDIUM 12.2.0-14
libstdc++6 CVE-2022-27943 LOW 12.2.0-14
libuuid1 CVE-2022-0563 LOW 2.38.1-5+deb12u1
zlib1g CVE-2023-45853 CRITICAL 1:1.2.13.dfsg-1

No Misconfigurations found

Target Java

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
org.springframework:spring-web CVE-2024-22262 HIGH 6.1.5 5.3.34, 6.0.19, 6.1.6

No Misconfigurations found

miracum-bot commented 6 months ago

:tada: This PR is included in version 3.12.13 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: