[REQ] Can COPA fix vulnerability from ubuntu pro if I have license

[mslichao]

What kind of request is this?

None

What is your request or suggestion?

The scan tools said there is a security fix in ubuntu pro with esm version, but seems copa cannot patch this version to my docker.
I have ubuntu pro license, is it possible to let copa use my ubuntu pro license to do the patch?

Are you willing to submit PRs to contribute to this feature request?

• Yes, I am willing to implement it.

[ashnamehrotra]

@mslichao Copa does not natively support Ubuntu Pro to patch today. We have a discussion post up and are looking for feedback regarding future package source policy design #1390. A potential workaround is creating your own tooling image and redirecting Copa's tooling image to that image via Buildkit's source policies. You can find this in our faq.

[github-actions]

This issue has been automatically marked as stale because it has not had
recent activity. It will be closed if no further activity occurs.
Thank you for your contributions.