fix(security): vulnerabilities found in fabric-all-in-one #2121
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
zondervancalvez
requested review from
petermetz,
takeutak,
izuru0,
jagpreetsinghsasan and
sandeepnRES
as code owners
zondervancalvez
force-pushed
the
zondervancalvez/issue2056
branch
from
e857eac
to
e189222
Compare
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Jul 20, 2022
Fixes hyperledger#1876 Depends On: hyperledger#2121 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
|
Thanks for the contribution. This looks more likely a nice to have sort of thing, rather than a vulnerability fix as we dont call the AIO images as production ready, those are just for testing purposes. But yes, still the base image change is a good update. |
jagpreetsinghsasan
approved these changes
Jul 20, 2022
zondervancalvez
force-pushed
the
zondervancalvez/issue2056
branch
3 times, most recently
from
764397e
to
984b106
Compare
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Jul 20, 2022
Fixes hyperledger#1876 Depends On: hyperledger#2121 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
takeutak
approved these changes
Jul 20, 2022
petermetz
approved these changes
Jul 23, 2022
petermetz
force-pushed
the
zondervancalvez/issue2056
branch
2 times, most recently
from
09d7c73
to
e9ae7a2
Compare
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Jul 27, 2022
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Jul 27, 2022
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
|
@izuru0 @sanvenDev following up for your review. Thank you. |
zondervancalvez
force-pushed
the
zondervancalvez/issue2056
branch
from
e9ae7a2
to
f51d344
Compare
petermetz
force-pushed
the
zondervancalvez/issue2056
branch
from
f51d344
to
1218b25
Compare
petermetz
requested changes
Aug 26, 2022
zondervancalvez
force-pushed
the
zondervancalvez/issue2056
branch
2 times, most recently
from
afdbc08
to
b0e59f7
Compare
|
@petermetz DCO is now fixed |
zondervancalvez
force-pushed
the
zondervancalvez/issue2056
branch
from
b0e59f7
to
f5b56ac
Compare
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Jul 27, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Jul 27, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 3, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 3, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 3, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 7, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 8, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 8, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 9, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 9, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 9, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 15, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 15, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 15, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 15, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 16, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 21, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 23, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 30, 2023
Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 30, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Aug 30, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
zondervancalvez
added a commit
to zondervancalvez/cactus
that referenced
this pull request
Sep 7, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
petermetz
pushed a commit
to zondervancalvez/cactus
that referenced
this pull request
Sep 7, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
petermetz
pushed a commit
that referenced
this pull request
Sep 7, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes #1876 Depends On: #2121 Depends On: #2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
adrianbatuto
pushed a commit
to adrianbatuto/cacti
that referenced
this pull request
Sep 8, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
adrianbatuto
added a commit
to adrianbatuto/cacti
that referenced
this pull request
Sep 8, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
adrianbatuto
pushed a commit
to adrianbatuto/cacti
that referenced
this pull request
Sep 20, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
sandeepnRES
pushed a commit
to sandeepnRES/cacti
that referenced
this pull request
Dec 21, 2023
Trivy is a cutting-edge security tool designed to enhance the safety of containerized applications by conducting thorough vulnerability assessments. Specifically developed for scanning container images, ranging from low-severity issues to critical threats. It employs an intelligent rating system to categorize vulnerabilities based on their severity levels, ensuring that high to critical vulnerabilities are given special attention. Upon detecting vulnerabilities that fall within this elevated range, Trivy will throw an error. By integrating Trivy into our deployment pipeline, we can proactively mitigate security risks and enhance the resilience of our repository. Fixes hyperledger#1876 Depends On: hyperledger#2121 Depends On: hyperledger#2135 Signed-off-by: zondervancalvez <zondervan.v.calvez@accenture.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #2056