Skip to content

Commit b999874

Browse files
cx-aniket-shindecx-aniket-shinde
committed
Trivy issues
1 parent 4d4d8bc commit b999874

3 files changed

Lines changed: 552 additions & 334 deletions

File tree

Dockerfile

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,6 @@
1+
# TODO: Update base image to a version with glibc >= 2.43-r6 to fix OS-layer vulnerabilities
2+
# (CVE-2026-4046, CVE-2026-4437, CVE-2026-4438 in glibc/glibc-locale-posix/ld-linux/libcrypt1,
3+
# CVE-2026-2673 in libcrypto3/libssl3). Requires Checkmarx to publish an updated base image.
14
FROM checkmarx/bash:5.3-r5-98621acba7807a@sha256:98621acba7807a4e128f3e00aba3987e4f659ff352191f79cdbaa7f8a32cfb58
25
USER nonroot
36

0 commit comments

Comments
 (0)