🔒 Security vulnerabilities detected in Docker base image

[github-actions]

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-07T02:56:18.999Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow

[github-actions]

Rebuild Analysis

Vulnerability Scan Comparison Report

Scan Date: 2026-03-07T02:57:01Z
Image Version: 6.4.1

Summary

• Old Image: 1 vulnerabilities
• New Image: 1 vulnerabilities
• Status: ⚠️ No vulnerabilities fixed

Fixed Vulnerabilities

None

Remaining Vulnerabilities

• [CRITICAL] CVE-2026-22184 in zlib 1.3.1-r2 (fix available: 1.3.2-r0)

⚠️ Image Not Published

The rebuild did not fix any vulnerabilities, so the image was not published.

Possible reasons:

• The base image maintainers have not released fixes yet
• The vulnerabilities require application-level changes
• New vulnerabilities were introduced

This workflow will retry on the next scheduled run.

[github-actions]

Updated Scan Results

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-08T03:05:42.329Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow

[github-actions]

Rebuild Analysis

Vulnerability Scan Comparison Report

Scan Date: 2026-03-08T03:06:24Z
Image Version: 6.4.1

Summary

• Old Image: 1 vulnerabilities
• New Image: 1 vulnerabilities
• Status: ⚠️ No vulnerabilities fixed

Fixed Vulnerabilities

None

Remaining Vulnerabilities

• [CRITICAL] CVE-2026-22184 in zlib 1.3.1-r2 (fix available: 1.3.2-r0)

⚠️ Image Not Published

The rebuild did not fix any vulnerabilities, so the image was not published.

Possible reasons:

• The base image maintainers have not released fixes yet
• The vulnerabilities require application-level changes
• New vulnerabilities were introduced

This workflow will retry on the next scheduled run.

[github-actions]

Updated Scan Results

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-09T03:07:19.801Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow

[github-actions]

Rebuild Analysis

Vulnerability Scan Comparison Report

Scan Date: 2026-03-09T03:08:04Z
Image Version: 6.4.1

Summary

• Old Image: 1 vulnerabilities
• New Image: 1 vulnerabilities
• Status: ⚠️ No vulnerabilities fixed

Fixed Vulnerabilities

None

Remaining Vulnerabilities

• [CRITICAL] CVE-2026-22184 in zlib 1.3.1-r2 (fix available: 1.3.2-r0)

⚠️ Image Not Published

The rebuild did not fix any vulnerabilities, so the image was not published.

Possible reasons:

• The base image maintainers have not released fixes yet
• The vulnerabilities require application-level changes
• New vulnerabilities were introduced

This workflow will retry on the next scheduled run.

[github-actions]

Updated Scan Results

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-10T03:02:38.200Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow

[github-actions]

Rebuild Analysis

Vulnerability Scan Comparison Report

Scan Date: 2026-03-10T03:03:21Z
Image Version: 6.4.1

Summary

• Old Image: 1 vulnerabilities
• New Image: 1 vulnerabilities
• Status: ⚠️ No vulnerabilities fixed

Fixed Vulnerabilities

None

Remaining Vulnerabilities

• [CRITICAL] CVE-2026-22184 in zlib 1.3.1-r2 (fix available: 1.3.2-r0)

⚠️ Image Not Published

The rebuild did not fix any vulnerabilities, so the image was not published.

Possible reasons:

• The base image maintainers have not released fixes yet
• The vulnerabilities require application-level changes
• New vulnerabilities were introduced

This workflow will retry on the next scheduled run.

[github-actions]

Updated Scan Results

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-11T03:01:32.416Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow

[github-actions]

Rebuild Analysis

Vulnerability Scan Comparison Report

Scan Date: 2026-03-11T03:02:20Z
Image Version: 6.4.1

Summary

• Old Image: 1 vulnerabilities
• New Image: 2 vulnerabilities
• Status: ❌ More vulnerabilities in new image

Fixed Vulnerabilities

None

Remaining Vulnerabilities

• [CRITICAL] CVE-2026-22184 in zlib 1.3.1-r2 (fix available: 1.3.2-r0)
• [HIGH] CVE-2026-31812 in quinn-proto 0.11.12 (fix available: 0.11.14)

⚠️ Image Not Published

The rebuild did not fix any vulnerabilities, so the image was not published.

Possible reasons:

• The base image maintainers have not released fixes yet
• The vulnerabilities require application-level changes
• New vulnerabilities were introduced

This workflow will retry on the next scheduled run.

[github-actions]

Updated Scan Results

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-13T03:03:13.727Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow

[github-actions]

Rebuild Analysis

Vulnerability Scan Comparison Report

Scan Date: 2026-03-13T03:03:50Z
Image Version: 6.4.1

Summary

• Old Image: 2 vulnerabilities
• New Image: 2 vulnerabilities
• Status: ⚠️ No vulnerabilities fixed

Fixed Vulnerabilities

• [HIGH] CVE-2026-31958 in tornado 6.5.4

Remaining Vulnerabilities

• [CRITICAL] CVE-2026-22184 in zlib 1.3.1-r2 (fix available: 1.3.2-r0)
• [HIGH] CVE-2026-31812 in quinn-proto 0.11.12 (fix available: 0.11.14)

⚠️ Image Not Published

The rebuild did not fix any vulnerabilities, so the image was not published.

Possible reasons:

• The base image maintainers have not released fixes yet
• The vulnerabilities require application-level changes
• New vulnerabilities were introduced

This workflow will retry on the next scheduled run.

[github-actions]

Updated Scan Results

Security Scan Alert

The scheduled security scan has detected vulnerabilities in the Docker base image.

Scan Date: 2026-03-14T03:01:56.359Z
Image: ghcr.io/kusold/shreddit:latest
Latest Version: v6.4.1

Actions Taken

• Vulnerability scan results have been uploaded to the Security tab
• A workflow to rebuild the Docker image will be triggered automatically

Details

Check the Security tab for detailed vulnerability information.

---

This issue was automatically created by the Docker Security Scan workflow