Monitor CVE reports as provided by KF/manifest team #327
Comments
tarilabs
changed the title
|
It looks to me to get better numbers we need to have coordination with KFP WG for which we copy the MLMD setup. I notice mysql:8.0.39 as also suggested in #267 would improve some of this numbers, although same considerations as above, since it seems to be also failing the bare minimal K8s test we have on this repo. |
|
On suggestion received during the MR biweekly meeting 2024-09-16, I've raised the question about the shared DB image in the Discussion forum for the KFP WG: kubeflow/pipelines#11224 |
|
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
|
Hi, this is a note of record that regardless we didn't receive any feedback since on enquiry despite also following up with Liaisons and community in KF Release meetings, etc., in order also to best support contributor development from Mac/ARM. So to merge #267 to have refreshed dependency images, and help with local dev. If you have any concern, please raise it by latest KF MR biweekly meeting currently scheduled for 2025-02-03. |
With KF 1.9, the Platform (KF/Manifest) team is introducing CVE reporting.
ref: https://blog.kubeflow.org/kubeflow-1.9-release/#cve-scanning
Since kubeflow/manifests#2860 it is possible to access the reports for the whole KF platform by accessing the zip archive in any of the run from: https://github.com/kubeflow/manifests/actions/workflows/trivy.yaml
With kubeflow/manifests#2856 we avoid a double-counting in the final report for image which are shared across WGs/Components (ie: we share Mysql and gcr.io/tfx-oss-public/ml_metadata_store_server)
Baseline
From the KF 1.9 release, this numbers where reported:
September 2nd
Source images
Shared images
The text was updated successfully, but these errors were encountered: