Skip to content

[Docker] Parametric base image version. #82

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 5, 2025
Merged

[Docker] Parametric base image version. #82

merged 1 commit into from
May 5, 2025

Conversation

sir-gon
Copy link
Owner

@sir-gon sir-gon commented May 5, 2025

No description provided.

@sir-gon sir-gon force-pushed the renovate/ubuntu-24.x branch from 4d394a6 to 08b082e Compare May 5, 2025 20:02
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented May 5, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud
github-advanced-security[bot]
github-advanced-security bot found potential problems May 5, 2025
View reviewed changes
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check warning

Code scanning / Snyk Container

Low severity - Improper Input Validation vulnerability in coreutils Medium

This file introduces a vulnerable coreutils package with a low severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check failure

Code scanning / Snyk Container

Low severity - Allocation of Resources Without Limits or Throttling vulnerability in glibc High

This file introduces a vulnerable glibc package with a low severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check notice

Code scanning / Snyk Container

Low severity - Out-of-bounds Write vulnerability in gnupg2 Low

This file introduces a vulnerable gnupg2 package with a low severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check notice

Code scanning / Snyk Container

Low severity - Information Exposure vulnerability in libgcrypt20 Note

This file introduces a vulnerable libgcrypt20 package with a low severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check notice

Code scanning / Snyk Container

Low severity - CVE-2024-41996 vulnerability in openssl Note

This file introduces a vulnerable openssl package with a low severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check warning

Code scanning / Snyk Container

Medium severity - Insecure Storage of Sensitive Information vulnerability in pam Medium

This file introduces a vulnerable pam package with a medium severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check failure

Code scanning / Snyk Container

Medium severity - Improper Authentication vulnerability in pam High

This file introduces a vulnerable pam package with a medium severity vulnerability.
Dockerfile
@@ -1,4 +1,5 @@
FROM ubuntu:noble-20250415.1 AS init
ARG BASE_IMAGE_VERSION=ubuntu:noble-20250415.1

Check notice

Code scanning / Snyk Container

Low severity - CVE-2024-56433 vulnerability in shadow Note

This file introduces a vulnerable shadow package with a low severity vulnerability.
@sir-gon sir-gon merged commit a64aeb0 into main May 5, 2025
23 of 24 checks passed
@renovate renovate bot deleted the renovate/ubuntu-24.x branch May 5, 2025 20:09
@codecov Codecov
Copy link

codecov bot commented May 5, 2025

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 99.52%. Comparing base (9cb7ae4) to head (08b082e).
Report is 2 commits behind head on main.

Additional details and impacted files 
@@ Coverage Diff @@ ## main #82 +/- ## ======================================= Coverage 99.52% 99.52% ======================================= Files 14 14 Lines 209 209 ======================================= Hits 208 208 Misses 1 1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

1 participant

@sir-gon