wolfi-dev
rancher-2.9/2.9.0-r2: cve remediation
rancher-2.9/2.9.0-r2: fix GHSA-v23v-6jw2-98fq
Advisory data: https://github.com/wolfi-dev/advisories/blob/main/rancher-2.9.advisories.yaml
![octo-sts[bot] avatar](https://avatars.githubusercontent.com/in/801323?v=4 "Published by a pub.dev verified publisher"){kind=small}
Open AI suggestions to solve the build error:
The error message is: "fatal: detected dubious ownership in repository at '/github/home'
To add an exception for this directory, call:
git config --global --add safe.directory /github/home
ERRO request failed error=\"Get \\\"./packages/apk-configuration\\\": unsupported protocol scheme \\\"\\\"\" method=GET url=./packages/apk-configuration
WARN ignoring missing keys: failed to perform key discovery: Get \"./packages/apk-configuration\": GET ./packages/apk-configuration giving up after 1 attempt(s): Get \"./packages/apk-configuration\": unsupported protocol scheme \"\"
WARN Failed to running update. Error: package github.com/docker/docker with version 'v23.0.15' is already at version v25.0.3+incompatible
ERRO ERROR: failed to build package. the build environment has been preserved:
INFO workspace dir: /temp/melange-workspace-2179414078
INFO guest dir: /temp/melange-guest-2978620500
ERRO failed to build package: unable to run package rancher-2.9 pipeline: unable to run pipeline: unable to run pipeline: exit status 1
make[1]: *** [Makefile:111: packages/aarch64/rancher-2.9-2.9.0-r3.apk] Error 1
make[1]: Leaving directory '/github/home'
make: *** [Makefile:101: package/rancher-2.9] Error 2"
1. Run `git config --global --add safe.directory /github/home`.
2. Ensure the URL in the GET request uses a supported protocol.
3. Verify package version compatibility for `github.com/docker/docker`.
4. Check pipeline configuration for errors.
5. Re-run the build process.
Open AI suggestions to solve the build error:
The error message is:
fatal: detected dubious ownership in repository at '/github/home' To add an exception for this directory, call:
git config --global --add safe.directory /github/home ERRO request failed error="Get "./packages/apk-configuration": unsupported protocol scheme """ method=GET url=./packages/apk-configuration WARN ignoring missing keys: failed to perform key discovery: Get "./packages/apk-configuration": GET ./packages/apk-configuration giving up after 1 attempt(s): Get "./packages/apk-configuration": unsupported protocol scheme "" WARN Error: Failed to running update. Error: package github.com/docker/docker with version 'v23.0.15' is already at version v25.0.3+incompatible ERRO ERROR: failed to build package. the build environment has been preserved: INFO workspace dir: /temp/melange-workspace-2345026034 INFO guest dir: /temp/melange-guest-1341036309 ERRO failed to build package: unable to run package rancher-2.9 pipeline: unable to run pipeline: unable to run pipeline: exit status 1 make[1]: *** [Makefile:111: packages/aarch64/rancher-2.9-2.9.0-r3.apk] Error 1 make[1]: Leaving directory '/github/home' make: *** [Makefile:101: package/rancher-2.9] Error 2
To fix this error:
1. Run `git config --global --add safe.directory /github/home`.
2. Correct the URL for `./packages/apk-configuration` to use a supported protocol.
3. Ensure Docker package versions are compatible.
4. Verify paths and dependencies in the Makefile.
5. Re-run the build process.
Open AI suggestions to solve the build error:
The error message is: "fatal: detected dubious ownership in repository at '/github/home'
To add an exception for this directory, call:
git config --global --add safe.directory /github/home
ERRO request failed error=\"Get \\\"./packages/apk-configuration\\\": unsupported protocol scheme \\\"\\\"\"
WARN ignoring missing keys: failed to perform key discovery: Get \"./packages/apk-configuration\": GET ./packages/apk-configuration giving up after 1 attempt(s): Get \"./packages/apk-configuration\": unsupported protocol scheme \"\"
WARN Error: Failed to running update. Error: package github.com/docker/docker with version 'v23.0.15' is already at version v25.0.3+incompatible
ERRO ERROR: failed to build package. the build environment has been preserved:
INFO workspace dir: /temp/melange-workspace-3387662707
INFO guest dir: /temp/melange-guest-576320573
ERRO failed to build package: unable to run package rancher-2.9 pipeline: unable to run pipeline: unable to run pipeline: exit status 1
make[1]: *** [Makefile:111: packages/aarch64/rancher-2.9-2.9.0-r3.apk] Error 1
make[1]: Leaving directory '/github/home'
make: *** [Makefile:101: package/rancher-2.9] Error 2
##[error]Process completed with exit code 2."
1. Run `git config --global --add safe.directory /github/home`.
2. Correct the URL in `./packages/apk-configuration` to use `http` or `https`.
3. Check Docker package version compatibility.
4. Verify pipeline configuration.
5. Re-run the build.
Open AI suggestions to solve the build error:
The error message is: "fatal: detected dubious ownership in repository at '/github/home'
To add an exception for this directory, call:
git config --global --add safe.directory /github/home
ERRO request failed error=\"Get \\\"./packages/apk-configuration\\\": unsupported protocol scheme \\\"\\\"\" method=GET url=./packages/apk-configuration
WARN ignoring missing keys for ./packages: failed to perform key discovery: Get \"./packages/apk-configuration\": GET ./packages/apk-configuration giving up after 1 attempt(s): Get \"./packages/apk-configuration\": unsupported protocol scheme \"\"
WARN Error: Failed to running update. Error: package github.com/docker/docker with version 'v23.0.15' is already at version v25.0.3+incompatible
ERRO ERROR: failed to build package. the build environment has been preserved:
INFO workspace dir: /temp/melange-workspace-3504942631
INFO guest dir: /temp/melange-guest-3424930909
ERRO failed to build package: unable to run package rancher-2.9 pipeline: unable to run pipeline: unable to run pipeline: exit status 1
make[1]: *** [Makefile:111: packages/aarch64/rancher-2.9-2.9.0-r3.apk] Error 1
make[1]: Leaving directory '/github/home'
make: *** [Makefile:101: package/rancher-2.9] Error 2
##[error]Process completed with exit code 2."
1. Run `git config --global --add safe.directory /github/home`.
2. Check the URL in `./packages/apk-configuration` for the correct protocol scheme.
3. Ensure the correct version of `github.com/docker/docker` is specified.
4. Verify the build environment and dependencies.
5. Re-run the build process.
PR https://github.com/wolfi-dev/os/pull/27299 will enable successful build
"Package Update Config Check " check failrue can be ignored as it will be handled by a subsequent version bump PR.