Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Vulnerability patch in singleuser-sample #3610

Merged
merged 1 commit into from
Jan 27, 2025
Merged

Conversation

jupyterhub-bot
Copy link
Collaborator

A rebuild of quay.io/jupyterhub/k8s-singleuser-sample has been found to influence the detected vulnerabilities! This PR will trigger a rebuild because it has updated a comment in the Dockerfile.

About

This scan for known vulnerabilities has been made by aquasecurity/trivy. Trivy was configured to filter the vulnerabilities with the following settings:

  • ignore-unfixed: true

Before

Before trying to rebuild the image, the following vulnerabilities was detected in quay.io/jupyterhub/k8s-singleuser-sample:4.1.1-0.dev.git.6918.h1a87fac7.

Target Vuln. ID Package Name Installed v. Fixed v.
debian CVE-2024-50349 git 1:2.39.5-0+deb12u1 1:2.39.5-0+deb12u2
debian CVE-2024-50349 git-man 1:2.39.5-0+deb12u1 1:2.39.5-0+deb12u2
debian CVE-2024-52006 git 1:2.39.5-0+deb12u1 1:2.39.5-0+deb12u2
debian CVE-2024-52006 git-man 1:2.39.5-0+deb12u1 1:2.39.5-0+deb12u2

After

Target Vuln. ID Package Name Installed v. Fixed v.

@jupyterhub-bot jupyterhub-bot added the image:rebuild-to-patch-vuln Image rebuild to patch a known external vulnerability label Jan 27, 2025
@manics manics merged commit fd515d4 into main Jan 27, 2025
14 checks passed
@manics manics deleted the vuln-scan-singleuser-sample branch January 27, 2025 09:45
consideRatio pushed a commit to jupyterhub/helm-chart that referenced this pull request Jan 27, 2025
jupyterhub/zero-to-jupyterhub-k8s#3610 Merge pull request #3610 from jupyterhub/vuln-scan-singleuser-sample
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
image:rebuild-to-patch-vuln Image rebuild to patch a known external vulnerability
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

2 participants