Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

security: bump operator base image to bci-micro:15.5 #429

Merged
merged 1 commit into from
Mar 14, 2024
Merged

security: bump operator base image to bci-micro:15.5 #429

merged 1 commit into from
Mar 14, 2024

Conversation

mjura
Copy link
Contributor

@mjura mjura commented Mar 12, 2024

Issue: #427

What this PR does / why we need it:

Which issue(s) this PR fixes
Issue #

Special notes for your reviewer:

Checklist:

  • squashed commits into logical changes
  • includes documentation
  • adds unit tests
  • adds or updates e2e tests
  • backport needed

@mjura mjura requested a review from a team as a code owner March 12, 2024 16:43
@mjura mjura mentioned this pull request Mar 12, 2024
Closed
4 tasks
@mjura mjura changed the title security: bump base image for bci-base to 15.6 security: bump base image for bci-micro to 15.5 Mar 12, 2024
@mjura mjura changed the title security: bump base image for bci-micro to 15.5 security: bump base image to bci-micro:15.5 Mar 12, 2024
@mjura mjura force-pushed the base-main branch 2 times, most recently from d545562 to 28acfa9 Compare March 12, 2024 17:36
@mjura mjura changed the title security: bump base image to bci-micro:15.5 security: bump base image for bci-base to 15.6 Mar 12, 2024
@mjura mjura changed the title security: bump base image for bci-base to 15.6 security: bump operator base image to bci-micro:15.5 Mar 13, 2024
yiannistri
yiannistri approved these changes Mar 13, 2024
View reviewed changes
Copy link
Contributor

@yiannistri yiannistri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I've run trivy against the branch that contains the version bump and no vulnerabilities were found 💯

> trivy image --scanners vuln -s HIGH,CRITICAL docker.io/rancher/aks-operator:v0.0.0-after
2024-03-13T11:52:34.853Z        INFO    Vulnerability scanning is enabled
2024-03-13T11:52:36.727Z        INFO    Detected OS: suse linux enterprise server
2024-03-13T11:52:36.727Z        INFO    Detecting SUSE vulnerabilities...
2024-03-13T11:52:36.728Z        INFO    Number of language-specific files: 1
2024-03-13T11:52:36.728Z        INFO    Detecting gobinary vulnerabilities...

docker.io/rancher/aks-operator:v0.0.0-after (suse linux enterprise server 15.5)

Total: 0 (HIGH: 0, CRITICAL: 0)

@mjura mjura merged commit 0e4b4b6 into rancher:main Mar 14, 2024
7 checks passed
@mjura mjura deleted the base-main branch July 23, 2024 06:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yiannistri yiannistri yiannistri approved these changes

@alexander-demicev alexander-demicev alexander-demicev approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@mjura @yiannistri @alexander-demicev