Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(docker): update docker digests #182

Merged
merged 3 commits into from
Jun 11, 2024
Merged

chore(docker): update docker digests #182

merged 3 commits into from
Jun 11, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jun 5, 2024
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Type Update Change
docker.io/ubuntu final digest a6d2b38 -> 19478ce
docker.io/ubuntu final digest 874aca5 -> 0b89735

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot enabled auto-merge (squash) June 5, 2024 06:46
@phil-davis phil-davis mentioned this pull request Jun 10, 2024
Merged
@renovate renovate bot force-pushed the renovate/docker-digests branch from 5f1f2e1 to da50fb8 Compare June 10, 2024 07:09
@owncloud-docker owncloud-docker deleted a comment from renovate bot Jun 10, 2024
@renovate renovate bot force-pushed the renovate/docker-digests branch from da50fb8 to 30bc3ba Compare June 10, 2024 08:06
@phil-davis
Copy link
Contributor

I think that this needs a newer https://github.com/owncloud-ci/wait-for/releases

wait-for had updates for its underlying Alpine Linux.
I just did PR owncloud-ci/wait-for#140 to fix the notification in the merge CI.

It looks like renovate-bot with "ownclouders" has some way that it generates a release. Maybe that will happen automagically "real soon now" (tm). Let's see.

Then renovate-bot needs to update this PR (or do another one) to suck in the latest wait-for.

@phil-davis phil-davis self-assigned this Jun 10, 2024
@phil-davis
Copy link
Contributor

https://drone.owncloud.com/owncloud-docker/ubuntu/441/3/5

usr/bin/wait-for (gobinary)
===========================
Total: 4 (HIGH: 4, CRITICAL: 0)

It is still reporting these 4 CVEs and says that they are a problem with wait-for

@phil-davis phil-davis mentioned this pull request Jun 11, 2024
Merged
@renovate renovate bot merged commit b3f6344 into master Jun 11, 2024
1 check passed
@phil-davis
Copy link
Contributor

Also bumped wait-for to v2.0.4 - that resolves the CVEs reported by Trivy.

@phil-davis phil-davis deleted the renovate/docker-digests branch June 11, 2024 08:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@renovate-approve renovate-approve[bot] renovate-approve[bot] approved these changes

Assignees

@phil-davis phil-davis

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@phil-davis