chore(master): release 2.7.12

[lotyp]

🤖 I have created a release beep boop

2.7.12 (2024-09-19)

Dependencies

• deps: update ansible/ansible-lint action to v24.9.2 (8bfde23)

---

This PR was generated with Release Please. See documentation.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-base:latest

📦 Image Reference wayofdev/php-base:latest

digest	sha256:6ccb32e63c79e7047935c7344165e74ff59e965c2d87fdaf41c2f5da775a02da
vulnerabilities
size	71 MB
packages	99

📦 Base Image php:8.1-alpine

also known as	8.1-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.29-alpine 8.1.29-alpine3.20 8.1.29-cli-alpine 8.1.29-cli-alpine3.20
digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilities

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-base:latest

Base image is php:8.1-alpine

Name	8.1.29-alpine3.20
Digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilities
Pushed	1 week ago
Size	35 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20, 8.1.29-alpine, 8.1.29-alpine3.20, 8.1.29-cli-alpine, 8.1.29-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.11	1 week ago
8.2-alpine Minor runtime version update Also known as: 8.2.23-cli-alpine 8.2.23-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2-alpine3.20	Benefits: Same OS detected Minor runtime version update Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.2.23	1 week ago

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-base:latest

📦 Image Reference wayofdev/php-base:latest

digest	sha256:c2d731e6720be19f6bd5d27021fe447145e8ad6ef1b89a89ede6b99ee73f0203
vulnerabilities
size	67 MB
packages	100

📦 Base Image php:8.1-fpm-alpine

also known as	8.1-fpm-alpine3.20 8.1.29-fpm-alpine 8.1.29-fpm-alpine3.20
digest	sha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
vulnerabilities

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-base:latest

Base image is php:8.1-fpm-alpine

Name	8.1.29-fpm-alpine3.20
Digest	sha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
Vulnerabilities
Pushed	1 week ago
Size	31 MB
Packages	51
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-fpm-alpine3.20, 8.1.29-fpm-alpine, 8.1.29-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Minor runtime version update Also known as: 8.2.23-fpm-alpine 8.2.23-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 32 MB Flavor: alpine OS: 3.20 Runtime: 8.2.23	1 week ago
8.3-fpm-alpine Image has same number of vulnerabilities Also known as: 8.3.11-fpm-alpine 8.3.11-fpm-alpine3.20 8.3-fpm-alpine3.20 8-fpm-alpine 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 32 MB Flavor: alpine OS: 3.20	1 week ago

[github-actions]

Outdated

🔍 Vulnerabilities of moby/buildkit:buildx-stable-1

📦 Image Reference moby/buildkit:buildx-stable-1

digest	sha256:2a89c2764aad4d5ea6fe114f91a79e157f5e410251f6c54214a1d5d337bd7d75
vulnerabilities
size	102 MB
packages	243

📦 Base Image alpine:3

also known as	3.20 3.20.3 latest
digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
vulnerabilities

stdlib 1.22.4 (golang) pkg:golang/stdlib@1.22.4 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range >=1.22.0-0 <1.22.5 Fixed version 1.22.5 EPSS Score 0.04% EPSS Percentile 16th percentile Description The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational (200 or higher) status. This mishandling could leave a client connection in an invalid state, where the next request sent on the connection will fail. An attacker sending a request to a net/http/httputil.ReverseProxy proxy can exploit this mishandling to cause a denial of service by sending "Expect: 100-continue" requests which elicit a non-informational response from the backend. Each such request leaves the proxy with an invalid connection, and causes one subsequent request using that connection to fail. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image moby/buildkit:buildx-stable-1

Base image is alpine:3

Name	3.20.3
Digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
Vulnerabilities
Pushed	1 week ago
Size	3.6 MB
Packages	17
OS	3.20.3

The base image is also available under the supported tag(s): 3.20, 3.20.3, latest

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-base:latest

📦 Image Reference wayofdev/php-base:latest

digest	sha256:f31a87d614da0d674589bbe19b0e6d616f12b037430b19b773ad3e7e03c30d02
vulnerabilities
size	91 MB
packages	120

📦 Base Image php:8-alpine

also known as	8-alpine3.20 8-cli-alpine 8-cli-alpine3.20 8.3-alpine 8.3-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 alpine alpine3.20 cli-alpine cli-alpine3.20
digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilities

[github-actions]

Outdated

🔍 Vulnerabilities of moby/buildkit:buildx-stable-1

📦 Image Reference moby/buildkit:buildx-stable-1

digest	sha256:2a89c2764aad4d5ea6fe114f91a79e157f5e410251f6c54214a1d5d337bd7d75
vulnerabilities
size	102 MB
packages	243

📦 Base Image alpine:3

also known as	3.20 3.20.3 latest
digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
vulnerabilities

stdlib 1.22.4 (golang) pkg:golang/stdlib@1.22.4 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range >=1.22.0-0 <1.22.5 Fixed version 1.22.5 EPSS Score 0.04% EPSS Percentile 16th percentile Description The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational (200 or higher) status. This mishandling could leave a client connection in an invalid state, where the next request sent on the connection will fail. An attacker sending a request to a net/http/httputil.ReverseProxy proxy can exploit this mishandling to cause a denial of service by sending "Expect: 100-continue" requests which elicit a non-informational response from the backend. Each such request leaves the proxy with an invalid connection, and causes one subsequent request using that connection to fail. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image moby/buildkit:buildx-stable-1

Base image is alpine:3

Name	3.20.3
Digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
Vulnerabilities
Pushed	1 week ago
Size	3.6 MB
Packages	17
OS	3.20.3

The base image is also available under the supported tag(s): 3.20, 3.20.3, latest

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

Outdated

🔍 Vulnerabilities of moby/buildkit:buildx-stable-1

📦 Image Reference moby/buildkit:buildx-stable-1

digest	sha256:2a89c2764aad4d5ea6fe114f91a79e157f5e410251f6c54214a1d5d337bd7d75
vulnerabilities
size	102 MB
packages	243

📦 Base Image alpine:3

also known as	3.20 3.20.3 latest
digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
vulnerabilities

stdlib 1.22.4 (golang) pkg:golang/stdlib@1.22.4 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range >=1.22.0-0 <1.22.5 Fixed version 1.22.5 EPSS Score 0.04% EPSS Percentile 16th percentile Description The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational (200 or higher) status. This mishandling could leave a client connection in an invalid state, where the next request sent on the connection will fail. An attacker sending a request to a net/http/httputil.ReverseProxy proxy can exploit this mishandling to cause a denial of service by sending "Expect: 100-continue" requests which elicit a non-informational response from the backend. Each such request leaves the proxy with an invalid connection, and causes one subsequent request using that connection to fail. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image moby/buildkit:buildx-stable-1

Base image is alpine:3

Name	3.20.3
Digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
Vulnerabilities
Pushed	1 week ago
Size	3.6 MB
Packages	17
OS	3.20.3

The base image is also available under the supported tag(s): 3.20, 3.20.3, latest

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-base:latest

📦 Image Reference wayofdev/php-base:latest

digest	sha256:a7e962c98dd636f9c421c7a490f525212175e028a3af597880f7f6898896f45e
vulnerabilities
size	90 MB
packages	120

📦 Base Image php:8.2-alpine

also known as	8.2-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2.23-cli-alpine 8.2.23-cli-alpine3.20
digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilities

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-base:latest

📦 Image Reference wayofdev/php-base:latest

digest	sha256:692979ee08c493249a73122216712c17847a71fce2503df498f306d899f40103
vulnerabilities
size	90 MB
packages	120

📦 Base Image php:8.1-alpine

also known as	8.1-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.29-alpine 8.1.29-alpine3.20 8.1.29-cli-alpine 8.1.29-cli-alpine3.20
digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilities

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-base:latest

Base image is php:8.2-alpine

Name	8.2.23-alpine3.20
Digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilities
Pushed	1 week ago
Size	36 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20, 8.2.23-alpine, 8.2.23-alpine3.20, 8.2.23-cli-alpine, 8.2.23-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.11	1 week ago

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-base:latest

Base image is php:8.1-alpine

Name	8.1.29-alpine3.20
Digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilities
Pushed	1 week ago
Size	35 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20, 8.1.29-alpine, 8.1.29-alpine3.20, 8.1.29-cli-alpine, 8.1.29-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.11	1 week ago
8.2-alpine Minor runtime version update Also known as: 8.2.23-cli-alpine 8.2.23-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2-alpine3.20	Benefits: Same OS detected Minor runtime version update Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.2.23	1 week ago

[github-actions]

Outdated

🔍 Vulnerabilities of moby/buildkit:buildx-stable-1

📦 Image Reference moby/buildkit:buildx-stable-1

digest	sha256:2a89c2764aad4d5ea6fe114f91a79e157f5e410251f6c54214a1d5d337bd7d75
vulnerabilities
size	102 MB
packages	243

📦 Base Image alpine:3

also known as	3.20 3.20.3 latest
digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
vulnerabilities

stdlib 1.22.4 (golang) pkg:golang/stdlib@1.22.4 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range >=1.22.0-0 <1.22.5 Fixed version 1.22.5 EPSS Score 0.04% EPSS Percentile 16th percentile Description The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational (200 or higher) status. This mishandling could leave a client connection in an invalid state, where the next request sent on the connection will fail. An attacker sending a request to a net/http/httputil.ReverseProxy proxy can exploit this mishandling to cause a denial of service by sending "Expect: 100-continue" requests which elicit a non-informational response from the backend. Each such request leaves the proxy with an invalid connection, and causes one subsequent request using that connection to fail. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image moby/buildkit:buildx-stable-1

Base image is alpine:3

Name	3.20.3
Digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
Vulnerabilities
Pushed	1 week ago
Size	3.6 MB
Packages	17
OS	3.20.3

The base image is also available under the supported tag(s): 3.20, 3.20.3, latest

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

🔍 Vulnerabilities of wayofdev/php-base:latest

📦 Image Reference wayofdev/php-base:latest

digest	sha256:40046f1a1047164881250b2b48fcc1cfdb06b4daa2ab1ec12fd0cf666b0e13a8
vulnerabilities
size	91 MB
packages	120

📦 Base Image php:8-alpine

also known as	8-alpine3.20 8-cli-alpine 8-cli-alpine3.20 8.3-alpine 8.3-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 alpine alpine3.20 cli-alpine cli-alpine3.20
digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilities

[github-actions]

Recommended fixes for image wayofdev/php-base:latest

Base image is php:8-alpine

Name	8.3.11-alpine3.20
Digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilities
Pushed	1 week ago
Size	37 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.3.11

The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, 8.3.11-alpine, 8.3.11-alpine3.20, 8.3.11-cli-alpine, 8.3.11-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

✅ There are no tag recommendations at this time.

[lotyp]

🤖 Created releases:

• v2.7.12
  🌻