Vulnerabilities present in the image

Open NicolasCARPi opened this issue 7 months ago • 1 comments

Hello,

When scanning the image, multiple published vulnerabilities can be found. Sure, many are false positives, but it would be nice to monitor this properly and remove as many as possible.

To view it, run locally this command: docker run aquasec/trivy image manulera/opencloning

Suggestions:

run apt-upgrade in images so you get latest packages version with patches
add a GH Action with trivy scanning (see example here)

I'm sure you'll understand how important it is to adress this aspect :)

Best, ~Nico

May 23 '25 08:05 NicolasCARPi

Running with snyk.io tools:

May 26 '25 09:05 NicolasCARPi