docker-airflow icon indicating copy to clipboard operation
docker-airflow copied to clipboard

Published 20 hours ago verified publisher icon puckel

Vulnerabilities in base image

Open habi-sheriff-cko opened this issue 5 years ago • 1 comments
trafficstars

Hi,

We are using puckel image locally. It was perfect. Now we are trying to build image for AWS -ECS cluster dev. We tried with your base images which is throwing vulnerabilities(Herewith attached screenshot) from python:3.7-slim-buster.

We tried to build our own image using the given docker file which is also gives the same result.

python:3.7-slim-buster got 1 high puckel/airflow got 2 critical; 8 high python:3.7-slim-stretch got 2 critical and 22 high

Any input can help us.

Screenshot 2020-06-03 at 16 49 05 Screenshot 2020-06-03 at 16 49 17

Thanks,

habi-sheriff-cko avatar Jun 03 '20 15:06 habi-sheriff-cko

I have nothing to add here. I wonder if someone has successfully promoted airflow on production without using a third-party tool and be able to mitigate these risks?

oattie avatar Jun 17 '20 22:06 oattie