deep-dream-maker
deep-dream-maker copied to clipboard
OverStruck
[Snyk] Security upgrade nginx from alpine to 1-alpine
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Changes included in this PR
- webapp/Dockerfile.prod
We recommend upgrading to nginx:1-alpine, as this image has only 1 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.
Some of the most important vulnerabilities in your base image include:
| Severity | Priority Score / 1000 | Issue | Exploit Maturity |
|---|---|---|---|
 |
471 | Use After Free SNYK-ALPINE316-BUSYBOX-2953070 |
No Known Exploit |
 |
571 | Incorrect Default Permissions SNYK-ALPINE316-CURL-2938013 |
No Known Exploit |
|
571 | Incorrect Default Permissions SNYK-ALPINE316-CURL-2938013 |
No Known Exploit |
|
567 | Inadequate Encryption Strength SNYK-ALPINE316-OPENSSL-2941806 |
No Known Exploit |
|
567 | Inadequate Encryption Strength SNYK-ALPINE316-OPENSSL-2941806 |
No Known Exploit |
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
Codecov Report
Merging #72 (01c683c) into dev-2.0 (8cf68d8) will not change coverage. The diff coverage is
n/a.
@@ Coverage Diff @@
## dev-2.0 #72 +/- ##
========================================
Coverage 79.71% 79.71%
========================================
Files 18 18
Lines 276 276
========================================
Hits 220 220
Misses 56 56
:mega: Codecov can now indicate which changes are the most critical in Pull Requests. Learn more
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}