Closed antoinerg closed 4 months ago
@antoinerg Images are available for testing. docker pull ghcr.io/stakater/reloader:SNAPSHOT-PR-673-7b088bed
\ndocker pull ghcr.io/stakater/reloader:SNAPSHOT-PR-673-UBI-7b088bed
@antoinerg Images are available for testing.
docker pull ghcr.io/stakater/reloader:SNAPSHOT-PR-673-7b088bed
\ndocker pull ghcr.io/stakater/reloader:SNAPSHOT-PR-673-UBI-7b088bed
➜ ~ docker run -it aquasec/trivy:latest image ghcr.io/stakater/reloader:SNAPSHOT-PR-673-7b088bed
2024-05-30T21:48:12Z INFO Need to update DB
2024-05-30T21:48:12Z INFO Downloading DB... repository="ghcr.io/aquasecurity/trivy-db:2"
47.48 MiB / 47.48 MiB [------------------------------------------------------------------------------------------------] 100.00% 43.00 MiB p/s 1.3s
2024-05-30T21:48:14Z INFO Vulnerability scanning is enabled
2024-05-30T21:48:14Z INFO Secret scanning is enabled
2024-05-30T21:48:14Z INFO If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-05-30T21:48:14Z INFO Please see also https://aquasecurity.github.io/trivy/v0.51/docs/scanner/secret/#recommendation for faster secret detection
2024-05-30T21:48:14Z INFO Detected OS family="debian" version="12.5"
2024-05-30T21:48:14Z INFO [debian] Detecting vulnerabilities... os_version="12" pkg_num=3
2024-05-30T21:48:14Z INFO Number of language-specific files num=1
2024-05-30T21:48:14Z INFO [gobinary] Detecting vulnerabilities...
ghcr.io/stakater/reloader:SNAPSHOT-PR-673-7b088bed (debian 12.5)
Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)
Sweet! :tada:
Here's another PR for your consideration @MuneebAijaz! Thank you very much :bow:
Note that the CVEs above still affect v1.0.103
so this PR is still pertinent.
Thank you for your contribution @antoinerg and sorry for the delay.
Resolves several CVEs.
Prior to this change:
Following this change,
trivy
reports zero CVE :tada: