You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
A vulnerability in google's object storage library is causing Trivy to trip up and fail our CI/CD builds. Given the way this library is pulled in, I think simply building a new release will resolve this problem (since the version's not pinned in the maven pom file). We also need to rebuild icarus with the new esop version to squash the vulnerability in icarus as well.
Describe the bug
A vulnerability in google's object storage library is causing Trivy to trip up and fail our CI/CD builds. Given the way this library is pulled in, I think simply building a new release will resolve this problem (since the version's not pinned in the maven pom file). We also need to rebuild icarus with the new esop version to squash the vulnerability in icarus as well.
https://avd.aquasec.com/nvd/2020/cve-2020-7692/
To Reproduce
Use icarus or esop with Trivy as a vulnerability scanner.
Expected behavior
No vulnerabilities
The text was updated successfully, but these errors were encountered: