Skip to content
This repository has been archived by the owner on Oct 11, 2023. It is now read-only.

[Snyk] Security upgrade golang from 1.6 to 1 #3069

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Changes included in this PR

  • vendor/github.com/docker/distribution/Dockerfile

We recommend upgrading to golang:1, as this image has only 84 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Some of the most important vulnerabilities in your base image include:

Severity Priority Score / 1000 Issue Exploit Maturity
critical severity 886 Arbitrary Argument Injection
SNYK-DEBIAN8-GIT-340820
Mature
high severity 786 Open Redirect
SNYK-DEBIAN8-GIT-340873
Mature
high severity 786 Directory Traversal
SNYK-DEBIAN8-GIT-340907
Mature
high severity 786 Out-of-bounds Write
SNYK-DEBIAN8-PROCPS-309313
Mature
high severity 786 Race Condition
SNYK-DEBIAN8-WGET-300469
Mature

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

@sheng-liang sheng-liang closed this Jul 6, 2022
@dirkmueller dirkmueller reopened this Oct 6, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants