terrascan icon indicating copy to clipboard operation
terrascan copied to clipboard

Published 20 hours ago verified publisher icon tenable

[Snyk] Security upgrade alpine from 3.14.6 to 3.18.6

Open mandibles232 opened this issue 1 year ago • 2 comments

This PR was automatically created by Snyk using the credentials of a real user.


Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Changes included in this PR

  • integrations/argocd/Dockerfile

We recommend upgrading to alpine:3.18.6, as this image has only 0 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Some of the most important vulnerabilities in your base image include:

Severity Priority Score / 1000 Issue Exploit Maturity
high severity 614 Use After Free
SNYK-ALPINE314-OPENSSL-3314637		 No Known Exploit
high severity 614 Access of Resource Using Incompatible Type ('Type Confusion')
SNYK-ALPINE314-OPENSSL-3314646		 No Known Exploit
high severity 614 Double Free
SNYK-ALPINE314-OPENSSL-3314653		 No Known Exploit
high severity 614 Improper Certificate Validation
SNYK-ALPINE314-OPENSSL-3368739		 No Known Exploit
critical severity 714 Out-of-bounds Write
SNYK-ALPINE314-ZLIB-2976174		 No Known Exploit

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Use After Free 🦉 Access of Resource Using Incompatible Type ('Type Confusion')

mandibles232 avatar Jan 28 '24 00:01 mandibles232

Quality Gate Passed Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

sonarqubecloud[bot] avatar Jan 28 '24 00:01 sonarqubecloud[bot]

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (3bf466d) 78.50% compared to head (e03960f) 78.50%.

:exclamation: Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

Impacted file tree graph

@@           Coverage Diff           @@
##           master    #1664   +/-   ##
=======================================
  Coverage   78.50%   78.50%           
=======================================
  Files         281      281           
  Lines        7973     7973           
=======================================
  Hits         6259     6259           
  Misses       1338     1338           
  Partials      376      376

codecov-commenter avatar Jan 28 '24 01:01 codecov-commenter