Mike McCready
Mike McCready
This issue is also reproducible under on GitHub Actions with Ubuntu 24.04 and Cypress 14.0.0 beta (commit 4f2a244): ```text Cypress Version: 14.0.0 (pre-release) System Platform: linux (Ubuntu - 24.04) System...
@DaringuL > I am also experiencing this error with Cypress 13.14.2 and Ubuntu 24.04 and headless Chrome 129.0.6668.70. > What should I do to get rid from this error? You...
@d4v3y0rk Thanks for your suggestion to use the environment variable setting `LIBGL_ALWAYS_SOFTWARE=1`. I tried this out on the original steps to reproduce from this issue and I was still getting...
@d4v3y0rk > I think the `env` entry can only be used at the job or step level. According to the [documentation](https://docs.github.com/en/actions/writing-workflows/workflow-syntax-for-github-actions#env). It is actually not very clear. They should include...
- This CRITICAL security vulnerability continues with [cypress/included:13.11.0](https://hub.docker.com/layers/cypress/included/13.11.0/images/sha256-08d27295f83918b513bf57d85e70a931e62ffd1d21e31774428acffc0b29c950) To reproduce report, use for example: ```shell trivy image --ignore-unfixed --vuln-type library --severity CRITICAL cypress/included:13.11.0 ```
@hjqgloria The other issues have already been reported. - https://github.com/cypress-io/cypress/issues/27763 - https://github.com/cypress-io/cypress/issues/28208 - https://github.com/cypress-io/cypress/issues/28207
@hjqgloria Two of the vulnerabilities you listed have now been fixed. Current status for `cypress/included:13.15.1` ```text $ trivy image --ignore-unfixed --pkg-types library --scanners vuln --severity CRITICAL cypress/included Node.js (node-pkg) Total:...
@jennifer-shehane > I don't see this version of `flat` existing in the 13.5.2 prerelease of Cypress, maybe I'm missing it somewhere... -Since this issue is about `minimist` I answered instead...
@denyo - This issue is only for CVE-2021-44906 minimist - You can find also https://github.com/cypress-io/cypress/issues/27763 for one of the other vulnerabilities you mention
@hjqgloria > [@MikeMcC399](https://github.com/MikeMcC399), any plan to fix those two remaining vulnerabilities? flat and minimist I have to defer answering your question to the Cypress.io team. I'm an external contributor to...