Bump Trivy to 0.69.2 Caracal by seunghun1ee · Pull Request #2188 · stackhpc/stackhpc-kayobe-config

seunghun1ee · 2026-03-02T11:24:50Z

Trivy had security incident on 1st March 2026 [1], resulting losing all GitHub Releases between 0.27.0-0.69.1.
They then restored the latest as 0.69.2

[1] https://github.com/aquasecurity/trivy/discussions/10265

(cherry picked from commit 9144c9f)

Trivy had security incident on 1st March 2026 [1], resulting losing all GitHub Releases between 0.27.0-0.69.1. They then restored the latest as 0.69.2 [1] https://github.com/aquasecurity/trivy/discussions/10265 (cherry picked from commit 9144c9f)

gemini-code-assist

Code Review

This pull request bumps the Trivy version to 0.69.2 due to a security incident with previous releases. The change in tools/scan-images.sh is correct. I've added a suggestion to improve the dependency check by verifying the installed Trivy version, not just its presence, to make the script more robust.

tools/scan-images.sh

Bump Trivy to 0.69.2

5439aa4

Trivy had security incident on 1st March 2026 [1], resulting losing all GitHub Releases between 0.27.0-0.69.1. They then restored the latest as 0.69.2 [1] https://github.com/aquasecurity/trivy/discussions/10265 (cherry picked from commit 9144c9f)

seunghun1ee self-assigned this Mar 2, 2026

seunghun1ee requested a review from a team as a code owner March 2, 2026 11:24

gemini-code-assist bot reviewed Mar 2, 2026

View reviewed changes

tools/scan-images.sh Show resolved Hide resolved

seunghun1ee temporarily deployed to SMS Lab March 2, 2026 11:27 — with GitHub Actions Inactive

seunghun1ee temporarily deployed to Leafcloud March 2, 2026 11:27 — with GitHub Actions Inactive

seunghun1ee temporarily deployed to SMS Lab March 2, 2026 11:27 — with GitHub Actions Inactive

seunghun1ee temporarily deployed to Leafcloud March 2, 2026 11:27 — with GitHub Actions Inactive

seunghun1ee temporarily deployed to SMS Lab March 2, 2026 11:27 — with GitHub Actions Inactive

seunghun1ee temporarily deployed to Leafcloud March 2, 2026 11:27 — with GitHub Actions Inactive

priteau approved these changes Mar 2, 2026

View reviewed changes

seunghun1ee added the Caracal Targets the Caracal OpenStack release label Mar 2, 2026

seunghun1ee merged commit 39ea9a6 into stackhpc/2024.1 Mar 2, 2026
23 checks passed

seunghun1ee deleted the bump-trivy-caracal branch March 2, 2026 11:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump Trivy to 0.69.2 Caracal#2188

Bump Trivy to 0.69.2 Caracal#2188
seunghun1ee merged 1 commit intostackhpc/2024.1from
bump-trivy-caracal

seunghun1ee commented Mar 2, 2026

Uh oh!

gemini-code-assist bot left a comment

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

seunghun1ee commented Mar 2, 2026

Uh oh!

gemini-code-assist bot left a comment

Choose a reason for hiding this comment

Code Review

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants