Skip to content
This repository was archived by the owner on Sep 30, 2024. It is now read-only.

[Backport 5.2] sec: use fresh grafana image #58047

Merged
merged 1 commit into from
Nov 1, 2023
Merged

[Backport 5.2] sec: use fresh grafana image #58047

merged 1 commit into from
Nov 1, 2023

Conversation

sourcegraph-release-bot
Copy link
Collaborator

This fixes zlib CVE-2023-45853 for the new release.

Test plan

Ran scan on newly published image:

$ trivy image us.gcr.io/sourcegraph-dev/wolfi-grafana@sha256:963ec6435d899ec8312fd3555f96f117e5cd018218117bb6f89c9313e53ae6a2
2023-11-01T14:10:55.324Z	INFO	Vulnerability scanning is enabled
2023-11-01T14:10:55.324Z	INFO	Secret scanning is enabled
2023-11-01T14:10:55.324Z	INFO	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2023-11-01T14:10:55.324Z	INFO	Please see also https://aquasecurity.github.io/trivy/v0.46/docs/scanner/secret/#recommendation for faster secret detection
2023-11-01T14:10:55.331Z	INFO	Detected OS: chainguard
2023-11-01T14:10:55.331Z	INFO	Detecting Chainguard vulnerabilities...
2023-11-01T14:10:55.332Z	INFO	Number of language-specific files: 0

us.gcr.io/sourcegraph-dev/wolfi-grafana@sha256:963ec6435d899ec8312fd3555f96f117e5cd018218117bb6f89c9313e53ae6a2 (chainguard 20230214)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0

<!-- All pull requests REQUIRE a test plan: https://docs.sourcegraph.com/dev/background-information/testing_principles

Why does it matter?

These test plans are there to demonstrate that are following industry standards which are important or critical for our customers.
They might be read by customers or an auditor. There are meant be simple and easy to read. Simply explain what you did to ensure
your changes are correct!

Here are a non exhaustive list of test plan examples to help you:

  • Making changes on a given feature or component:
    • "Covered by existing tests" or "CI" for the shortest possible plan if there is zero ambiguity
    • "Added new tests"
    • "Manually tested" (if non trivial, share some output, logs, or screenshot)
  • Updating docs:
    • "previewed locally"
    • share a screenshot if you want to be thorough
  • Updating deps, that would typically fail immediately in CI if incorrect

@evict @shivasurya @github-actions
sec: use fresh grafana image (#58045)
6c45d00 
Co-authored-by: Shivasurya <s.shivasurya@gmail.com>
(cherry picked from commit f50ff9f)
@sourcegraph-release-bot sourcegraph-release-bot requested review from evict and a team November 1, 2023 15:16
@camdencheek camdencheek enabled auto-merge (squash) November 1, 2023 15:17
@sourcegraph-bot
Copy link
Contributor

📖 Storybook live preview

@camdencheek camdencheek merged commit 4b2ef0c into 5.2 Nov 1, 2023
@camdencheek camdencheek deleted the backport-58045-to-5.2 branch November 1, 2023 15:29
@varungandhi-src varungandhi-src mentioned this pull request Jan 16, 2024
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
2 more reviewers

@evict evict evict approved these changes

@camdencheek camdencheek camdencheek approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
backported-to-5.2 backports cla-signed SSDLC
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@sourcegraph-release-bot @sourcegraph-bot @evict @camdencheek