Skip to content

Commit

Permalink
[Snyk] Security upgrade ubuntu from latest to kinetic (#197)
Browse files Browse the repository at this point in the history 
* Update action versions & add Conjur fetching (#195)

* Update action versions & add Conjur fetching

* flip Go install to after source checkout

* update go-version

* go-version to version

* version set to latest

* add debug step

* switch from authn-jwt to authn due to iat issues

* fix: Dockerfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-UBUNTU2204-BASH-3098342
- https://snyk.io/vuln/SNYK-UBUNTU2204-OPENSSL-5296052
- https://snyk.io/vuln/SNYK-UBUNTU2204-OPENSSL-5296082
- https://snyk.io/vuln/SNYK-UBUNTU2204-SHADOW-5425688
- https://snyk.io/vuln/SNYK-UBUNTU2204-SHADOW-5425688

---------

Co-authored-by: snyk-bot <[email protected]>
  • Loading branch information
@infamousjoeg @snyk-bot
infamousjoeg and snyk-bot authored May 26, 2023
1 parent f6f6cc8 commit 66dae48
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ COPY . .

RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -o /app/cybr .

FROM ubuntu:22.10
FROM ubuntu:kinetic
COPY --from=builder /app/cybr /app/
RUN useradd -ms /bin/bash cybr && \
chmod 777 /home/cybr && \
Expand Down

0 comments on commit 66dae48

Please sign in to comment.