[BUG] many vulnerabilities in docker images

taigaio / taiga-docker

Mozilla Public License 2.0

1.22k stars 305 forks source link

[BUG] many vulnerabilities in docker images #102

Closed JLammering closed 1 year ago

JLammering commented 2 years ago

Describe the bug The docker images have many vulnerabilities including some high and critical ones. Could you update the images?

How can we reproduce the behavior docker scan taigaio/taiga-back

Screenshots grafik

yamila-moreno commented 1 year ago

Hi there @JLammering, thank you very much for noticing this. We've updated the image, so you can pull taigaio/taiga-back:latest and use it with the slim image up to date.

JLammering commented 1 year ago

Hi, thanks for updating that image. Its solved for that one. Unfortunately its the same with all other images in your docker-compose.yml. There are often critical and high severity vulnerabilities.

yamila-moreno commented 1 year ago

hi @JLammering we have just pushed the other 3 images with the base images up to date:

taigaio/taiga-front:latest
taigaio/taiga-events:latest
taigaio/taiga-protected:latest