loki
loki copied to clipboard
grafana
chore: Update nginx-unprivileged
What this PR does / why we need it:
1.27-alpine is the latest at the time of change - https://hub.docker.com/r/nginxinc/nginx-unprivileged/tags
the 1.24-alpine image is reportedly vulnerable to the following CVE: CVE-2023-44487 CVE-2024-2398 CVE-2024-2466 CVE-2024-34459 CVE-2024-6197
Which issue(s) this PR fixes: n/a
Special notes for your reviewer: just added https://github.com/grafana/loki/pull/13979 that also bumps the chart version. they share the same chart version as I have no idea which will be approved first. If approved and committed the linked PR will need version bumped.
Checklist
- [x] Reviewed the
CONTRIBUTING.mdguide (required) - [ ] Documentation added
- [ ] Tests updated
- [x] Title matches the required conventional commits format, see here
- Note that Promtail is considered to be feature complete, and future development for logs collection will be in Grafana Alloy. As such,
featPRs are unlikely to be accepted unless a case can be made for the feature actually being a bug fix to existing behavior.
- Note that Promtail is considered to be feature complete, and future development for logs collection will be in Grafana Alloy. As such,
- [ ] Changes that require user attention or interaction to upgrade are documented in
docs/sources/setup/upgrade/_index.md - [x] For Helm chart changes bump the Helm chart version in
production/helm/loki/Chart.yamland updateproduction/helm/loki/CHANGELOG.mdandproduction/helm/loki/README.md. Example PR - [ ] If the change is deprecating or removing a configuration option, update the
deprecated-config.yamlanddeleted-config.yamlfiles respectively in thetools/deprecated-config-checkerdirectory. Example PR
@jlm0x017 once you rebase this, I'll kick off the builds and get it merged. It may be Thursday when I get to it, but I will do my best to get to it tomorrow.
