Skip to content

Commit 029d32d

Browse files
dependabot[bot]jamesstottmoj
dependabot[bot]
and
jamesstottmoj
authored
:dependabot: github-actions(deps): Bump ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml from 5.5.0 to 6.3.0 (#89)
* :dependabot: github-actions(deps): Bump ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml Bumps [ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml](https://github.com/ministryofjustice/analytical-platform-github-actions) from 5.5.0 to 6.3.0. - [Release notes](https://github.com/ministryofjustice/analytical-platform-github-actions/releases) - [Commits](ministryofjustice/analytical-platform-github-actions@2ab1741...c1b4db7) --- updated-dependencies: - dependency-name: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml dependency-version: 6.3.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * Update container-scan.yml manually bump to v6.4.0 * Bump image * Update comment * Update .trivyignore --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: James Stott <158563996+jamesstottmoj@users.noreply.github.com>
1 parent f67ceb9 commit 029d32d

File tree

3 files changed

+4
-3
lines changed

3 files changed

+4
-3
lines changed

.github/workflows/container-scan.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,4 +13,4 @@ jobs:
1313
name: Container Scan
1414
permissions:
1515
contents: read
16-
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml@2ab174150aeb0a6003afd1c0b4316698720b3b6b # v5.5.0
16+
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml@9e604949e842733e0990f5eb6627844e8715deeb # v6.4.0

.trivyignore

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,3 +8,4 @@ CVE-2025-49794 exp:2026-03-17
88
CVE-2025-49796 exp:2026-03-17
99
CVE-2025-49795 exp:2026-03-17
1010
CVE-2025-6021 exp:2026-03-17
11+
CVE-2026-25646 exp:2026-03-20

Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
#checkov:skip=CKV_DOCKER_3: Current implementation uses off-the-shelf image from OpenResty which doesn't offer a nonroot variant
22

3-
# docker.io/openresty/openresty:1.27.1.2-1-alpine-fat
4-
FROM docker.io/openresty/openresty:1.27.1.2-1-alpine-fat@sha256:a82c4d8bceb80cffd0bb427959f959c8a733bcbeedcfd3d3a7d82268c4518339
3+
# docker.io/openresty/openresty:1.27.1.2-11-alpine-fat
4+
FROM docker.io/openresty/openresty:1.27.1.2-11-alpine-fat@sha256:4486eb7c26b6e94c7fe144b9293319e855ecaed378b24cb56062d2af2cf81513
55

66
LABEL org.opencontainers.image.vendor="Ministry of Justice" \
77
org.opencontainers.image.authors="Analytical Platform (analytical-platform@digital.justice.gov.uk)" \

0 commit comments

Comments
 (0)