Update rmlmapper vulnerability and add utility script for local trivy scans
Once this (https://git.dcc.sib.swiss/hospfair/rmlmapper-java/-/merge_requests/9) is merged I'll update the commit here.
nicola@C11-TS71OKVOBO6:~/workspace/sphn-connector$ ./utils/scan_images.sh
No build argument detected. Skipping build steps...
====================================================================
Scanning: sphn-connector_api:latest
====================================================================
2024-10-04T10:26:50+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:09+02:00 INFO Detected OS family="alpine" version="3.20.3"
2024-10-04T10:28:09+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.20" repository="3.20" pkg_num=46
2024-10-04T10:28:09+02:00 INFO Number of language-specific files num=2
2024-10-04T10:28:09+02:00 INFO [gobinary] Detecting vulnerabilities...
2024-10-04T10:28:09+02:00 INFO [python-pkg] Detecting vulnerabilities...
sphn-connector_api:latest (alpine 3.20.3)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_data_handler:latest
====================================================================
2024-10-04T10:28:11+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:11+02:00 INFO Detected OS family="alpine" version="3.20.3"
2024-10-04T10:28:11+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.20" repository="3.20" pkg_num=15
2024-10-04T10:28:11+02:00 INFO Number of language-specific files num=0
sphn-connector_data_handler:latest (alpine 3.20.3)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_minio:latest
====================================================================
2024-10-04T10:28:14+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:19+02:00 INFO Detected OS family="redhat" version="9.4"
2024-10-04T10:28:19+02:00 INFO [redhat] Detecting RHEL/CentOS vulnerabilities... os_version="9" pkg_num=20
2024-10-04T10:28:19+02:00 INFO Number of language-specific files num=2
2024-10-04T10:28:19+02:00 INFO [gobinary] Detecting vulnerabilities...
sphn-connector_minio:latest (redhat 9.4)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_connector:latest
====================================================================
2024-10-04T10:28:20+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:21+02:00 INFO Detected OS family="debian" version="12.7"
2024-10-04T10:28:21+02:00 INFO [debian] Detecting vulnerabilities... os_version="12" pkg_num=298
2024-10-04T10:28:21+02:00 INFO Number of language-specific files num=3
2024-10-04T10:28:21+02:00 INFO [python-pkg] Detecting vulnerabilities...
2024-10-04T10:28:21+02:00 INFO [node-pkg] Detecting vulnerabilities...
2024-10-04T10:28:21+02:00 INFO [jar] Detecting vulnerabilities...
sphn-connector_connector:latest (debian 12.7)
Total: 0 (HIGH: 0, CRITICAL: 0)
2024-10-04T10:28:21+02:00 INFO Table result includes only package filenames. Use '--format json' option to get the full path to the package file.
Python (python-pkg)
Total: 1 (HIGH: 1, CRITICAL: 0)
┌─────────────────────┬────────────────┬──────────┬────────┬───────────────────┬───────────────┬─────────────────────────────────────────────────────────┐
│ Library │ Vulnerability │ Severity │ Status │ Installed Version │ Fixed Version │ Title │
├─────────────────────┼────────────────┼──────────┼────────┼───────────────────┼───────────────┼─────────────────────────────────────────────────────────┤
│ Werkzeug (METADATA) │ CVE-2024-34069 │ HIGH │ fixed │ 2.2.3 │ 3.0.3 │ python-werkzeug: user may execute code on a developer's │
│ │ │ │ │ │ │ machine │
│ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2024-34069 │
└─────────────────────┴────────────────┴──────────┴────────┴───────────────────┴───────────────┴─────────────────────────────────────────────────────────┘
====================================================================
Scanning: sphn-connector_postgres:latest
====================================================================
2024-10-04T10:28:23+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:23+02:00 INFO Detected OS family="alpine" version="3.18.5"
2024-10-04T10:28:23+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.18" repository="3.18" pkg_num=47
2024-10-04T10:28:23+02:00 INFO Number of language-specific files num=0
sphn-connector_postgres:latest (alpine 3.18.5)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_pgadmin:latest
====================================================================
2024-10-04T10:28:24+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:24+02:00 INFO Detected OS family="alpine" version="3.18.4"
2024-10-04T10:28:24+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.18" repository="3.18" pkg_num=59
2024-10-04T10:28:24+02:00 INFO Number of language-specific files num=1
2024-10-04T10:28:24+02:00 INFO [python-pkg] Detecting vulnerabilities...
sphn-connector_pgadmin:latest (alpine 3.18.4)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_reverse-proxy:latest
====================================================================
2024-10-04T10:28:26+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:26+02:00 INFO Detected OS family="alpine" version="3.19.1"
2024-10-04T10:28:26+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.19" repository="3.19" pkg_num=66
2024-10-04T10:28:26+02:00 INFO Number of language-specific files num=0
sphn-connector_reverse-proxy:latest (alpine 3.19.1)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_grafana:latest
====================================================================
2024-10-04T10:28:27+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:28+02:00 INFO Detected OS family="alpine" version="3.19.1"
2024-10-04T10:28:28+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.19" repository="3.19" pkg_num=34
2024-10-04T10:28:28+02:00 INFO Number of language-specific files num=4
2024-10-04T10:28:28+02:00 INFO [gobinary] Detecting vulnerabilities...
2024-10-04T10:28:28+02:00 INFO [node-pkg] Detecting vulnerabilities...
sphn-connector_grafana:latest (alpine 3.19.1)
Total: 0 (HIGH: 0, CRITICAL: 0)
====================================================================
Scanning: sphn-connector_setup:latest
====================================================================
2024-10-04T10:28:29+02:00 INFO Vulnerability scanning is enabled
2024-10-04T10:28:29+02:00 INFO Detected OS family="alpine" version="3.20.3"
2024-10-04T10:28:29+02:00 INFO [alpine] Detecting vulnerabilities... os_version="3.20" repository="3.20" pkg_num=37
2024-10-04T10:28:29+02:00 INFO Number of language-specific files num=1
2024-10-04T10:28:29+02:00 INFO [python-pkg] Detecting vulnerabilities...
sphn-connector_setup:latest (alpine 3.20.3)
Total: 0 (HIGH: 0, CRITICAL: 0)Edited by Nicola Stoira
Merge request reports
Activity
Filter activity
Please register or sign in to reply