search

observatorium / thanos-receive-controller

Kubernetes controller to automatically configure Thanos receive hashrings
Apache License 2.0
93 stars 42 forks source link

Vulnerabilities in latest docker image #100

Closed abohne closed 1 year ago

abohne commented 1 year ago 

# grype --only-fixed quay.io/observatorium/thanos-receive-controller
 ✔ Vulnerability DB        [no update available]
 ✔ Loaded image
 ✔ Parsed image
 ✔ Cataloged packages      [88 packages]
 ✔ Scanned image           [12 vulnerabilities]

NAME                              INSTALLED                             FIXED-IN        TYPE       VULNERABILITY        SEVERITY
github.com/prometheus/prometheus  v1.8.2-0.20211119115433-692a54649ed7                  go-module  CVE-2019-3826        Medium (suppressed)
k8s.io/kubernetes                 v1.13.0                                               go-module  GHSA-74j8-88mm-7496  Medium (suppressed)
k8s.io/kubernetes                 v1.13.0                                               go-module  GHSA-j9wf-vvm6-4r9w  Medium (suppressed)
k8s.io/kubernetes                 v1.13.0                                               go-module  GHSA-vw47-mr44-3jf9  Low (suppressed)
k8s.io/kubernetes                 v1.13.0                               1.16.11         go-module  GHSA-wqv3-8cm6-h6wg  High
k8s.io/kubernetes                 v1.13.0                               1.18.18         go-module  GHSA-g42g-737j-qx6j  Medium
k8s.io/kubernetes                 v1.13.0                               1.18.19         go-module  GHSA-qh36-44jv-c8xj  Low
k8s.io/kubernetes                 v1.13.0                               1.19.15         go-module  GHSA-f5f7-6478-qm6p  High
k8s.io/kubernetes                 v1.13.0                               1.20.0-alpha.1  go-module  GHSA-8mjg-8c8g-6h85  Medium
k8s.io/kubernetes                 v1.13.0                               1.20.0-alpha.2  go-module  GHSA-8cfg-vx93-jvxw  Medium```