Skip to content

Commit 6476168

Browse files
BrianEllwoodBrianEllwood
authored
Enable Slack Alert for Container Release Failures (#86)
* add container release alert * update container scan version * update container test version * add CVEs to trivyignore
1 parent bd2d18c commit 6476168

File tree

4 files changed

+15
-3
lines changed

4 files changed

+15
-3
lines changed

.github/workflows/container-release.yml

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,4 +17,6 @@ jobs:
1717
contents: write
1818
id-token: write
1919
packages: write
20-
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-release.yml@0c3b5555edfbbb10220ed435359dfd6769ad79ed # v3.2.0
20+
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-release.yml@2ab174150aeb0a6003afd1c0b4316698720b3b6b # v5.5.0
21+
secrets:
22+
release-failure-webhook-url: ${{ secrets.ANALYTICAL_PLATFORM_RELEASE_FAILURE_SLACK_WEBHOOK_URL }}

.github/workflows/container-scan.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,4 +13,4 @@ jobs:
1313
name: Container Scan
1414
permissions:
1515
contents: read
16-
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml@0c3b5555edfbbb10220ed435359dfd6769ad79ed # v3.2.0
16+
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-scan.yml@2ab174150aeb0a6003afd1c0b4316698720b3b6b # v5.5.0

.github/workflows/container-test.yml

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,4 +13,5 @@ jobs:
1313
name: Container Test
1414
permissions:
1515
contents: read
16-
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-test.yml@0c3b5555edfbbb10220ed435359dfd6769ad79ed # v3.2.0
16+
uses: ministryofjustice/analytical-platform-github-actions/.github/workflows/reusable-container-test.yml@2ab174150aeb0a6003afd1c0b4316698720b3b6b # v5.5.0
17+

.trivyignore

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1 +1,10 @@
11
# As of 03/06/2025 there are no vulnerabilities to skip in docker.io/openresty/openresty:1.27.1.2-1-alpine-fat
2+
3+
# alpine 3.21.3 - sha is set to latest so no fix
4+
CVE-2025-64720 exp:2026-03-17
5+
CVE-2025-65018 exp:2026-03-17
6+
CVE-2025-66293 exp:2026-03-17
7+
CVE-2025-49794 exp:2026-03-17
8+
CVE-2025-49796 exp:2026-03-17
9+
CVE-2025-49795 exp:2026-03-17
10+
CVE-2025-6021 exp:2026-03-17

0 commit comments

Comments
 (0)