Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[v2.7] security: bump operator base image to bci-micro:15.5 #431

Merged
merged 1 commit into from
Mar 14, 2024
Merged

[v2.7] security: bump operator base image to bci-micro:15.5 #431

merged 1 commit into from
Mar 14, 2024

Conversation

mjura
Copy link
Contributor

@mjura mjura commented Mar 12, 2024

Issue: #427 (cherry picked from commit 31fe83b)

What this PR does / why we need it:

Which issue(s) this PR fixes
Issue #

Special notes for your reviewer:

Checklist:

  • squashed commits into logical changes
  • includes documentation
  • adds unit tests
  • adds or updates e2e tests
  • backport needed

@mjura mjura requested a review from a team as a code owner March 12, 2024 16:44
@mjura mjura mentioned this pull request Mar 12, 2024
Closed
4 tasks
@mjura mjura changed the title [v2.7] security: bump base image for bci-base to 15.6 [v2.7] security: bump base image to bci-micro 15.5 Mar 12, 2024
@mjura mjura changed the title [v2.7] security: bump base image to bci-micro 15.5 [v2.7] security: bump base image to bci-micro:15.5 Mar 12, 2024
@mjura mjura force-pushed the base-v2.7 branch 2 times, most recently from bdfe8b6 to 04f8962 Compare March 12, 2024 17:51
@mjura mjura changed the title [v2.7] security: bump base image to bci-micro:15.5 [v2.7] security: bump base image for bci-micro to 15.6 Mar 12, 2024
@mjura mjura changed the title [v2.7] security: bump base image for bci-micro to 15.6 [v2.7] security: bump base image for bci-base to 15.6 Mar 12, 2024
@mjura mjura changed the title [v2.7] security: bump base image for bci-base to 15.6 [v2.7] security: bump operator base image to bci-micro:15.5 Mar 13, 2024
yiannistri
yiannistri approved these changes Mar 13, 2024
View reviewed changes
Copy link
Contributor

@yiannistri yiannistri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No high/critical vulnerabilities were found after version bump 💯

❯ trivy image --scanners vuln -s HIGH,CRITICAL docker.io/rancher/aks-operator:v2.7.0-after
2024-03-13T13:11:34.601Z        INFO    Vulnerability scanning is enabled
2024-03-13T13:11:36.135Z        INFO    Detected OS: suse linux enterprise server
2024-03-13T13:11:36.135Z        INFO    Detecting SUSE vulnerabilities...
2024-03-13T13:11:36.138Z        INFO    Number of language-specific files: 1
2024-03-13T13:11:36.138Z        INFO    Detecting gobinary vulnerabilities...

docker.io/rancher/aks-operator:v2.7.0-after (suse linux enterprise server 15.5)

Total: 0 (HIGH: 0, CRITICAL: 0)

@mjura mjura merged commit 9f28539 into rancher:release-v2.7 Mar 14, 2024
7 checks passed
@mjura mjura deleted the base-v2.7 branch July 23, 2024 06:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@salasberryfin salasberryfin salasberryfin approved these changes

@yiannistri yiannistri yiannistri approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@mjura @yiannistri @salasberryfin