django-DefectDojo icon indicating copy to clipboard operation
django-DefectDojo copied to clipboard

Published 20 hours ago verified publisher icon DefectDojo

Update redis Docker tag from 7.2.9 to v8 (docker-compose.yml)

Open renovate[bot] opened this issue 7 months ago • 1 comments

This PR contains the following updates:

Package Update Change
redis major 7.2.9-alpine -> 8.0.2-alpine

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar May 05 '25 21:05 renovate[bot]

DryRun Security

This pull request contains a no-op image reference change in the docker-compose.yml file, where an identical Redis image is added and removed without introducing any actual modifications or security implications.

:warning: No-op Image Reference in docker-compose.yml
Vulnerability No-op Image Reference
Description The docker-compose.yml patch shows an identical Redis image reference being added and removed. This means no actual change was made to the image specification, resulting in no new security implications or modifications to the existing configuration.

https://github.com/DefectDojo/django-DefectDojo/blob/c1881af077b5f4f0c907196f851983dca0acfd2b/docker-compose.yml#L114-L120

All finding details can be found in the DryRun Security Dashboard.

dryrunsecurity[bot] avatar May 05 '25 21:05 dryrunsecurity[bot]

Update on this - we're looking at migrating to ValKey - that is currently being run on the public demo without issues.

mtesauro avatar Sep 26 '25 16:09 mtesauro

This pull request has conflicts, please resolve those before we can evaluate the pull request.

github-actions[bot] avatar Oct 10 '25 22:10 github-actions[bot]

Conflicts have been resolved. A maintainer will review the pull request shortly.

github-actions[bot] avatar Oct 10 '25 22:10 github-actions[bot]

Autoclosing Skipped

This PR has been flagged for autoclosing. However, it is being skipped due to the branch being already modified. Please close/delete it manually or report a bug if you think this is in error.

renovate[bot] avatar Oct 31 '25 19:10 renovate[bot]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

github-actions[bot] avatar Oct 31 '25 19:10 github-actions[bot]