Open serenagomez1304 opened 8 months ago
Would it be possible for a contributor to share their email id so I can give further information regarding the security scan report?
Hi @serenagomez1304, do you think it's unsafe to post the scan results here?
Hi @adejanovski, yes I think it isn't safe to post the results here. I was advised not to by the SecOps team at my company.
if these are public CVE' could you post here? we are using 3.4.0 and have multiple findings from our scan tools in regards to the cassandra-reaper.jar
I wouldn't be able to post them here.
Hi @serenagomez1304, you can join us on the ASF Slack or the K8ssandra Discord. There we can DM about those security scans results.
Project board link
While using the image:
thelastpickle/cassandra-reaper:3.3.4
, we run into a few security scan failures related to java libraries. Would we be able to fix these?