Bump node from 22.3.0-alpine3.19 to 22.4.0-alpine3.19

dependabot[bot] commented 2 months ago

Bumps node from 22.3.0-alpine3.19 to 22.4.0-alpine3.19.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

github-actions[bot] commented 2 months ago

Overview

Image reference	`sommerfeldio/website:latest`	`sommerfeldio/website:rc`
- digest	`c639c00567e0`	`28a4c808455e`
- tag	`latest`	`rc`
- provenance	https://github.com/sommerfeld-io/website/commit/d2e93bda89bc9c43028164f8174042ad2ff89ecd	https://github.com/sommerfeld-io/website/commit/7644c68ced399d9bf318c214aa7b32246d07cf36
- vulnerabilities
- platform	linux/amd64	linux/amd64
- size	42 MB	34 MB (-8.6 MB)
- packages	52	39 (-13)
Base Image	`httpd:2-alpine` also known as: • `2.4-alpine` • `alpine`	`httpd:2-alpine` also known as: • `2.4-alpine` • `alpine`
- vulnerabilities

Environment Variables (2 changes)

> * `±` 2 changed > * _3 unchanged_ ```diff HTTPD_PATCHES= HTTPD_PREFIX=/usr/local/apache2 -HTTPD_SHA256=fa16d72a078210a54c47dd5bef2f8b9b8a01d94909a51453956b3ec6442ea4c5 +HTTPD_SHA256=ec51501ec480284ff52f637258135d333230a7d229c3afa6f6c2f9040e321323 -HTTPD_VERSION=2.4.58 +HTTPD_VERSION=2.4.59 PATH=/usr/local/apache2/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin ```

Labels (4 changes)

> * `±` 4 changed > * _5 unchanged_ ```diff maintainer=sebastian@sommerfeld.io -org.opencontainers.image.created=2023-12-28T14:46:03.798Z +org.opencontainers.image.created=2024-07-01T03:18:29.872Z org.opencontainers.image.description=Website www.sommerfeld.io -org.opencontainers.image.licenses= +org.opencontainers.image.licenses=NOASSERTION -org.opencontainers.image.revision=d2e93bda89bc9c43028164f8174042ad2ff89ecd +org.opencontainers.image.revision= org.opencontainers.image.source=https://github.com/sommerfeld-io/website org.opencontainers.image.title=website org.opencontainers.image.url=https://github.com/sommerfeld-io/website -org.opencontainers.image.version=main +org.opencontainers.image.version=nightly ```

Packages and Vulnerabilities (22 package changes and 8 vulnerability changes)

> * :heavy_minus_sign: 13 packages removed > * :infinity: 9 packages changed > * 30 packages unchanged > * :heavy_check_mark: 8 vulnerabilities removed

Changes for packages of type apk (21 changes)

	Package	Version `sommerfeldio/website:latest`	Version `sommerfeldio/website:rc`
:infinity:	.httpd-so-deps	`20231213.194916`	`20240405.175259`
:heavy_minus_sign:	brotli	`1.1.0-r1`
:heavy_minus_sign:	bzip2	`1.0.8-r6`
:infinity:	c-ares	`1.22.1-r0`	`1.27.0-r0`

		Removed vulnerabilities (1):
:infinity:	ca-certificates	`20230506-r0`	`20240226-r0`
:heavy_minus_sign:	curl	`8.5.0-r0`

		Removed vulnerabilities (1):
:heavy_minus_sign:	cyrus-sasl	`2.1.28-r5`
:heavy_minus_sign:	expat	`2.5.0-r2`

		Removed vulnerabilities (3):
:heavy_minus_sign:	libc-dev	`0.7.2-r5`
:infinity:	libcrypto3	`3.1.4-r2`	`3.1.4-r5`
:infinity:	libexpat	`2.5.0-r2`	`2.6.2-r0`
:infinity:	libssl3	`3.1.4-r2`	`3.1.4-r5`

			Added vulnerabilities (4):
:infinity:	libxml2	`2.11.6-r0`	`2.11.7-r0`

		Removed vulnerabilities (1):
:heavy_minus_sign:	lua5.1	`5.1.5-r13`
:heavy_minus_sign:	nghttp2	`1.58.0-r0`
:heavy_minus_sign:	openldap	`2.6.6-r1`
:heavy_minus_sign:	openssl	`3.1.4-r2`

		Removed vulnerabilities (7):
:heavy_minus_sign:	pax-utils	`1.3.7-r2`
:heavy_minus_sign:	util-linux	`2.39.3-r0`
:heavy_minus_sign:	xz	`5.4.5-r0`
:infinity:	zlib	`1.3-r2`	`1.3.1-r0`

Changes for packages of type generic (1 changes)

	Package	Version `sommerfeldio/website:latest`	Version `sommerfeldio/website:rc`
:infinity:	httpd	`2.4.58`	`2.4.59`

github-actions[bot] commented 2 months ago

:mag: Vulnerabilities of `sommerfeldio/website:rc`

:package: Image Reference sommerfeldio/website:rc

digest	`sha256:28a4c808455ee3de76a155d9857d08405386585d25960cd2a9c35ebb9b6b820b`
vulnerabilities
size	34 MB
packages	39

:package: Base Image httpd:2-alpine

also known as	`2-alpine3.19` `2.4-alpine` `2.4-alpine3.19` `2.4.59-alpine` `2.4.59-alpine3.19` `alpine` `alpine3.19`
digest	`sha256:b48b48dcfff1407638908b8a1782480df0ad8bac7f5fc579496357864f97e60c`
vulnerabilities

libssl3 3.1.4-r5 (apk)

pkg:apk/alpine/libssl3@3.1.4-r5?arch=x86_64&upstream=openssl&distro=alpine-3.19.1
```dockerfile # Dockerfile (91:91) COPY --from=build-antora-site /tmp/antora/sommerfeld-io/public /usr/local/apache2/htdocs/docs ```

Affected range	`<3.1.6-r0`
Fixed version	`3.1.6-r0`
EPSS Score	`0.04%`
EPSS Percentile	`13th percentile`

Description

Affected range	`<3.1.6-r0`
Fixed version	`3.1.6-r0`

Description

Affected range	`<3.1.5-r0`
Fixed version	`3.1.5-r0`
EPSS Score	`0.04%`
EPSS Percentile	`10th percentile`

Description

Affected range	`<3.1.4-r6`
Fixed version	`3.1.4-r6`
EPSS Score	`0.04%`
EPSS Percentile	`10th percentile`

Description

ssl_client 1.36.1-r15 (apk)

pkg:apk/alpine/ssl_client@1.36.1-r15?arch=x86_64&upstream=busybox&distro=alpine-3.19.1
```dockerfile # Dockerfile (91:91) COPY --from=build-antora-site /tmp/antora/sommerfeld-io/public /usr/local/apache2/htdocs/docs ```

Affected range	`<1.36.1-r16`
Fixed version	`1.36.1-r16`
EPSS Score	`0.04%`
EPSS Percentile	`13th percentile`

Description

Affected range	`<1.36.1-r19`
Fixed version	`1.36.1-r19`
EPSS Score	`0.04%`
EPSS Percentile	`13th percentile`

Description

Affected range	`<1.36.1-r19`
Fixed version	`1.36.1-r19`
EPSS Score	`0.04%`
EPSS Percentile	`13th percentile`

Description

Affected range	`<1.36.1-r17`
Fixed version	`1.36.1-r17`
EPSS Score	`0.04%`
EPSS Percentile	`13th percentile`

Description

libcurl 8.5.0-r0 (apk)

pkg:apk/alpine/libcurl@8.5.0-r0?arch=x86_64&upstream=curl&distro=alpine-3.19.1
```dockerfile # Dockerfile (91:91) COPY --from=build-antora-site /tmp/antora/sommerfeld-io/public /usr/local/apache2/htdocs/docs ```

Affected range	`<8.6.0-r0`
Fixed version	Not Fixed
EPSS Score	`0.06%`
EPSS Percentile	`24th percentile`

Description

libxml2 2.11.7-r0 (apk)

pkg:apk/alpine/libxml2@2.11.7-r0?arch=x86_64&distro=alpine-3.19.1
```dockerfile # Dockerfile (91:91) COPY --from=build-antora-site /tmp/antora/sommerfeld-io/public /usr/local/apache2/htdocs/docs ```

Affected range	`<2.11.8-r0`
Fixed version	`2.11.8-r0`
EPSS Score	`0.04%`
EPSS Percentile	`10th percentile`

Description

sommerfeld-io / website