Skip to content

Commit 1c6b750

Browse files
ashleysmithTTDashleysmithTTD
committed
trivy ignore for now
1 parent 4b8242d commit 1c6b750

File tree

2 files changed

+2
-3
lines changed

2 files changed

+2
-3
lines changed

.trivyignore

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -19,3 +19,5 @@ CVE-2025-64720 exp:2026-06-05
1919
# UID2-6340
2020
CVE-2025-65018 exp:2026-06-05
2121

22+
# libpng vulnerability in base image - accepted risk
23+
CVE-2025-66293

Dockerfile

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,6 @@
11
# sha from https://hub.docker.com/layers/library/eclipse-temurin/21.0.8_9-jre-alpine-3.22/images/sha256-3408c45e1faee20e4e68808939a75f87efa469b927d20e12309689ead053daba
22
FROM eclipse-temurin@sha256:4ca7eff3ab0ef9b41f5fefa35efaeda9ed8d26e161e1192473b24b3a6c348aef
33

4-
# Fix CVE-2025-66293: Update libpng from 1.6.47-r0 to 1.6.53-r0
5-
RUN apk upgrade --no-cache libpng
6-
74
WORKDIR /app
85
EXPOSE 8089
96

0 commit comments

Comments
 (0)