Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: custom conf #85

Merged
merged 2 commits into from
Nov 5, 2023
Merged

fix: custom conf #85

merged 2 commits into from
Nov 5, 2023

Conversation

ShotaroMatsuya
Copy link
Owner

fixes #21

@ShotaroMatsuya ShotaroMatsuya reopened this Nov 5, 2023
@github-actions GitHub Actions
Copy link

github-actions bot commented Nov 5, 2023

Snyk Scan docker/fluentbit/Dockerfile

Show Results 
Testing minecraft/fluentbit:latest...

✗ High severity vulnerability found in yum
  Description: ALAS2-2023-2316
  Info: https://security.snyk.io/vuln/SNYK-AMZN2-YUM-6016244
  Introduced through: yum@3.4.3-158.amzn2.0.6
  From: yum@3.4.3-158.amzn2.0.6
  Image layer: Introduced by your base image (amazon/aws-for-fluent-bit:latest)
  Fixed in: 0:3.4.3-158.amzn2.0.7

✗ High severity vulnerability found in python-libs
  Description: XML External Entity (XXE) Injection
  Info: https://security.snyk.io/vuln/SNYK-AMZN2-PYTHONLIBS-6043062
  Introduced through: python-libs@2.7.18-1.amzn2.0.6
  From: python-libs@2.7.18-1.amzn2.0.6
  Image layer: Introduced by your base image (amazon/aws-for-fluent-bit:latest)
  Fixed in: 0:2.7.18-1.amzn2.0.7

✗ High severity vulnerability found in python
  Description: XML External Entity (XXE) Injection
  Info: https://security.snyk.io/vuln/SNYK-AMZN2-PYTHON-6043096
  Introduced through: python@2.7.18-1.amzn2.0.6
  From: python@2.7.18-1.amzn2.0.6
  Image layer: Introduced by your base image (amazon/aws-for-fluent-bit:latest)
  Fixed in: 0:2.7.18-1.amzn2.0.7

✗ High severity vulnerability found in libxml2
  Description: Use After Free
  Info: https://security.snyk.io/vuln/SNYK-AMZN2-LIBXML2-6043103
  Introduced through: libxml2@2.9.1-6.amzn2.5.12
  From: libxml2@2.9.1-6.amzn2.5.12
  Image layer: Introduced by your base image (amazon/aws-for-fluent-bit:latest)
  Fixed in: 0:2.9.1-6.amzn2.5.13



Organization:      shotaromatsuya
Package manager:   rpm
Target file:       docker/fluentbit/Dockerfile
Project name:      docker-image|minecraft/fluentbit
Docker image:      minecraft/fluentbit:latest
Platform:          linux/amd64
Base image:        amazon/aws-for-fluent-bit:latest
Licenses:          enabled

Tested 161 dependencies for known issues, found 4 issues.

Recommendations for your base image (amazon/aws-for-fluent-bit:latest) are not available.
See above for details and fixes on individual vulnerabilities

Pro tip: use `--exclude-base-image-vulns` to exclude from display Docker base image vulnerabilities.

Snyk found some vulnerabilities in your image applications (Snyk searches for these vulnerabilities by default). See https://snyk.co/app-vulns for more information.

To remove these messages in the future, please run `snyk config set disableSuggestions=true`

Learn more: https://docs.snyk.io/products/snyk-container/getting-around-the-snyk-container-ui/base-image-detection```

</details>

@ShotaroMatsuya ShotaroMatsuya merged commit 3446164 into main Nov 5, 2023
@ShotaroMatsuya ShotaroMatsuya deleted the fix/cwl_routing branch November 19, 2023 01:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

CloudWatchLogsにminecraft tailログが出力されていない
1 participant
@ShotaroMatsuya