graphql-engine
[Snyk] Security upgrade debian from bookworm-slim to 12.10-slim
#31
Open
Overview
Commits
1
Changes
View On GitHub

[Snyk] Security upgrade debian from bookworm-slim to 12.10-slim #31

snyk-io wants to merge 1 commit into master from snyk-fix-0f87a22af6ce8a9424ed9c2799740d39
snyk-io
snyk-io86 days ago

snyk-top-banner

Snyk has created this PR to fix 4 vulnerabilities in the dockerfile dependencies of this project.

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Snyk changed the following file(s):

  • v3/dev-auth-webhook.Dockerfile

We recommend upgrading to debian:12.10-slim, as this image has only 35 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Vulnerabilities that will be fixed with an upgrade:

Issue Score
critical severity Integer Overflow or Wraparound
SNYK-DEBIAN12-ZLIB-6008963		   240  
low severity CVE-2005-2541
SNYK-DEBIAN12-TAR-1560620		   185  
low severity Out-of-Bounds
SNYK-DEBIAN12-GLIBC-1547196		   182  
low severity Out-of-Bounds
SNYK-DEBIAN12-GLIBC-1547196		   182  
low severity Improper Certificate Validation
SNYK-DEBIAN12-PERL-5489184		   172  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

snyk-io[bot] fix: v3/dev-auth-webhook.Dockerfile to reduce vulnerabilities
244da061
semanticdiff-com
semanticdiff-com86 days ago

Review changes with  SemanticDiff

snyk-io
snyk-io86 days ago

🎉 Snyk checks have passed. No issues have been found so far.

security/snyk check is complete. No issues have been found. (View Details)

Login to write a write a comment.

Login via GitHub

Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Terms Of Use Privacy Policy Refund Policy Impressum