ignore CVE-2022-30065 until we have a fix
This commit is contained in:
parent
f0ddb8328e
commit
850a8057cf
|
@ -345,6 +345,7 @@ jobs:
|
|||
exit-code: 1
|
||||
ignore-unfixed: false
|
||||
severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
|
||||
trivyignores: .trivyignore
|
||||
- name: Check security vulnerabilities for autoconf
|
||||
uses: aquasecurity/trivy-action@master
|
||||
with:
|
||||
|
@ -354,6 +355,7 @@ jobs:
|
|||
exit-code: 1
|
||||
ignore-unfixed: false
|
||||
severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
|
||||
trivyignores: .trivyignore
|
||||
- name: Check security vulnerabilities for UI
|
||||
uses: aquasecurity/trivy-action@master
|
||||
with:
|
||||
|
@ -363,6 +365,7 @@ jobs:
|
|||
exit-code: 1
|
||||
ignore-unfixed: false
|
||||
severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
|
||||
trivyignores: .trivyignore
|
||||
|
||||
# Prepare tests
|
||||
- name: Install tests dependencies
|
||||
|
|
|
@ -0,0 +1 @@
|
|||
CVE-2022-30065
|
|
@ -48,7 +48,7 @@ RUN apk add --no-cache git && \
|
|||
ln -s /proc/1/fd/1 /var/log/letsencrypt/letsencrypt.log
|
||||
|
||||
# Fix CVEs
|
||||
RUN apk add "libssl1.1>=1.1.1q-r0" "libcrypto1.1>=1.1.1q-r0" "git>=2.32.3-r0" "ncurses-libs>=6.2_p20210612-r1" "ncurses-terminfo-base>=6.2_p20210612-r1" "busybox>=1.35.0-r17" "ssl_client>=1.35.0-r17"
|
||||
RUN apk add "libssl1.1>=1.1.1q-r0" "libcrypto1.1>=1.1.1q-r0" "git>=2.32.3-r0" "ncurses-libs>=6.2_p20210612-r1" "ncurses-terminfo-base>=6.2_p20210612-r1"
|
||||
|
||||
VOLUME /data /etc/nginx
|
||||
|
||||
|
|
Loading…
Reference in New Issue