EJBCA-CE vulnerabilities keyfactor/ejbca-ce:latest

[MRLeflei]

Hi,

When will the image on docker hub be updated to fix the latest vulnerabilities?

[MalinRidelius]

Hello MRLeflei! Our goal is to release a new feature release of community approximately twice per year, though timelines may vary. These releases typically include an updated container OS and security patches, excluding those deemed irrelevant after analysis. We don't aim for a no-CVE-container, but we do aim for one with no exploitable containers. Hoping for VEX to be adopted eventually.