sonpham96 comments

Results 2 comments of


                                            sonpham96

Addressing a lot of security vulnerabilities in the Cadence release v1.2.8

There are still a lot of security vulnerabilities in Cadence `v1.2.9` release. Scan results: ```sh Scan results for: image ubercadence/server:v1.2.9 sha256:91d5b52428fe2cc5bc18e940c0b73f6a758fa38790c1b62a7f7499d41084e716 Vulnerabilities +----------------+----------+------+---------------------------------------------------+------------------------------------+--------------------+------------+------------+----------------------------------------------------+ | CVE | SEVERITY | CVSS |...

Addressing a lot of security vulnerabilities in the latest Temporal admin-tools release 1.23.0

@yycptt @yiminc, from what I found the CVEs originate from the outdated dependencies in `tctl` which is included in the temporal server image ([config](https://github.com/temporalio/docker-builds/blob/bd92d8f0a61be6ef750df9435690bd16298f92ed/server.Dockerfile#L26)) image and admin-tools image ([config](https://github.com/temporalio/docker-builds/blob/bd92d8f0a61be6ef750df9435690bd16298f92ed/admin-tools.Dockerfile#L11)). I...