kafka-lag-exporter icon indicating copy to clipboard operation
kafka-lag-exporter copied to clipboard

Published 20 hours ago verified publisher icon seglo

Change docker base image due to security findings

Open hisabimbola opened this issue 3 years ago • 1 comments

Describe the bug The current base image - centos:8 that is been used now in the project is not maintained anymore and will be out of support at the end of this year. there are also high security findings in the centos:8 image

I wonder if it's possible to change to debian base image as that is better maintained

To Reproduce Provide logs and application configuration. See the Troubleshooting section of the README for instructions on how to enable DEBUG logging.

Environment

  • Version
  • Version of Apache Kafka cluster
  • Run with Helm or Standalone

Additional context Add any other context about the problem here.

hisabimbola avatar Apr 21 '21 13:04 hisabimbola

We're seeing all kinds of vulnerabilities in the current kafka-lag-exporter image. Roughly 100 of them with a trivy image scan. Any word on when a new one will be released that remediates these security risks?

justineyster avatar Jun 01 '21 18:06 justineyster

I suggest closing this issue. The base image has been changed (at least) twice since it was reported.

sverrehu avatar Oct 28 '22 12:10 sverrehu

Yes, can be closed. Thanks for the support

hisabimbola avatar Oct 28 '22 12:10 hisabimbola