github-actions[bot]
commented
8 months ago Overview
| Image reference | sommerfeldio/website:latest |
sommerfeldio/website:rc |
|---|---|---|
| - digest | bdd898a04404 |
07575096a882 |
| - provenance | https://github.com/sommerfeld-io/website/commit/ee6fa4f4afba8dc74b20acf0716ceef7deb669c8 | |
| - vulnerabilities |     |
    |
| - platform | linux/amd64 | linux/amd64 |
| - size | 20 MB | 42 MB (+22 MB) |
| - packages | 51 | 38 (-13) |
| Base Image | httpd:2-alpinealso known as: • 2.4-alpine• alpine |
httpd:2-alpinealso known as: • 2.4-alpine• 2.4.58-alpine• alpine |
| - vulnerabilities | |
|
Environment Variables (3 changes)
> * `±` 3 changed > * _2 unchanged_ ```diff -HTTPD_PATCHES=rewrite-windows-testchar-h.patch 1d5620574fa03b483262dc5b9a66a6906553389952ab5d3070a02f887cc20193 +HTTPD_PATCHES= HTTPD_PREFIX=/usr/local/apache2 -HTTPD_SHA256=dbccb84aee95e095edfbb81e5eb926ccd24e6ada55dcd83caecb262e5cf94d2a +HTTPD_SHA256=fa16d72a078210a54c47dd5bef2f8b9b8a01d94909a51453956b3ec6442ea4c5 -HTTPD_VERSION=2.4.57 +HTTPD_VERSION=2.4.58 PATH=/usr/local/apache2/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin ```Labels (8 changes)
> * `+` 8 added > * _1 unchanged_ ```diff maintainer=sebastian@sommerfeld.io +org.opencontainers.image.created=2023-12-19T11:33:57.668Z +org.opencontainers.image.description=Website www.sommerfeld.io +org.opencontainers.image.licenses= +org.opencontainers.image.revision=ee6fa4f4afba8dc74b20acf0716ceef7deb669c8 +org.opencontainers.image.source=https://github.com/sommerfeld-io/website +org.opencontainers.image.title=website +org.opencontainers.image.url=https://github.com/sommerfeld-io/website +org.opencontainers.image.version=main ```Packages and Vulnerabilities (27 package changes and 11 vulnerability changes)
> * :heavy_minus_sign: 13 packages removed > * :infinity: 14 packages changed > * 24 packages unchanged > * :heavy_check_mark: 11 vulnerabilities removedChanges for packages of type apk (26 changes)
| Package | Versionsommerfeldio/website:latest |
Versionsommerfeldio/website:rc |
|
|---|---|---|---|
| :infinity: | .httpd-so-deps | 20230614.204705 |
20231201.052742 |
| :heavy_minus_sign: | brotli | 1.0.9-r14 |
|
| :infinity: | busybox | 1.36.1-r0 |
1.36.1-r5 |
    |
|||
| Removed vulnerabilities (1): |
|||
| :infinity: | busybox-binsh | 1.36.1-r0 |
1.36.1-r5 |
| :heavy_minus_sign: | bzip2 | 1.0.8-r5 |
|
| :heavy_minus_sign: | curl | 8.1.2-r0 |
|
   |
|||
| Removed vulnerabilities (5): |
|||
| :heavy_minus_sign: | cyrus-sasl | 2.1.28-r4 |
|
| :heavy_minus_sign: | expat | 2.5.0-r1 |
|
| :heavy_minus_sign: | libc-dev | 0.7.2-r5 |
|
| :infinity: | libcrypto3 | 3.1.1-r1 |
3.1.4-r1 |
| :infinity: | libcurl | 8.1.2-r0 |
8.4.0-r0 |
 |
|||
| Added vulnerabilities (2): |
|||
| :infinity: | libldap | 2.6.4-r3 |
2.6.5-r0 |
| :infinity: | libssl3 | 3.1.1-r1 |
3.1.4-r1 |
| :infinity: | libxml2 | 2.11.4-r0 |
2.11.6-r0 |
| :heavy_minus_sign: | lua5.1 | 5.1.5-r12 |
|
| :infinity: | musl | 1.2.4-r0 |
1.2.4-r2 |
| :infinity: | musl-utils | 1.2.4-r0 |
1.2.4-r2 |
| :heavy_minus_sign: | nghttp2 | 1.53.0-r0 |
|
| |
|||
| Removed vulnerabilities (1): |
|||
| :infinity: | nghttp2-libs | 1.53.0-r0 |
1.57.0-r0 |
| :heavy_minus_sign: | openldap | 2.6.4-r3 |
|
| :heavy_minus_sign: | openssl | 3.1.1-r1 |
|
 |
|||
| Removed vulnerabilities (5): |
|||
| :heavy_minus_sign: | pax-utils | 1.3.7-r1 |
|
| :infinity: | perl | 5.36.1-r2 |
5.36.2-r0 |
| |
|||
| Removed vulnerabilities (1): |
|||
| :infinity: | ssl_client | 1.36.1-r0 |
1.36.1-r5 |
| :heavy_minus_sign: | util-linux | 2.38.1-r8 |
|
| :heavy_minus_sign: | xz | 5.4.3-r0 |
|
Changes for packages of type generic (1 changes)
| Package | Versionsommerfeldio/website:latest |
Versionsommerfeldio/website:rc |
|
|---|---|---|---|
| :infinity: | httpd | 2.4.57 |
2.4.58 |
Bumps docker/metadata-action from 5.3.0 to 5.4.0.
Release notes
Sourced from docker/metadata-action's releases.
Commits
9dc751fMerge pull request #369 from docker/dependabot/npm_and_yarn/docker/actions-to...c94c54cchore: update generated content187f092chore(deps): Bump@docker/actions-toolkitfrom 0.15.0 to 0.16.06d6eaf3Merge pull request #365 from docker/dependabot/npm_and_yarn/csv-parse-5.5.31484a7echore(deps): Bump csv-parse from 5.5.2 to 5.5.3Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show