deps(deps): update actions/checkout action to v4.2.1

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	v4.2.0 -> v4.2.1

---

Release Notes

actions/checkout (actions/checkout)

v4.2.1

Compare Source

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in https://github.com/actions/checkout/pull/1924

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:4cbcf329440748d486c1988c40c534f76a8dc56ea1cb2c6d6a4f72c68b32579b
vulnerabilities
size	108 MB
packages	229

📦 Base Image php:8-alpine

also known as	8-alpine3.20 8-cli-alpine 8-cli-alpine3.20 8.3-alpine 8.3-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 alpine alpine3.20 cli-alpine cli-alpine3.20
digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:95fa79481c83a9f1114a230077f83bf80da205ec35fe7be382da225dc8fff6fd
vulnerabilities
size	107 MB
packages	229

📦 Base Image php:8.2-alpine

also known as	8.2-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2.23-cli-alpine 8.2.23-cli-alpine3.20
digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:8d3c911761bbacdc055405838c6858eb05b30f981a84c3ec432f2a35383b343e
vulnerabilities
size	102 MB
packages	230

📦 Base Image php:8.1-fpm-alpine

also known as	8.1-fpm-alpine3.20 8.1.29-fpm-alpine 8.1.29-fpm-alpine3.20
digest	sha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name	8.3.11-alpine3.20
Digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilities
Pushed	1 month ago
Size	37 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.3.11

The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8-alpine Newer image for same tag Also known as: 8.3.12-cli-alpine 8.3.12-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.12-alpine 8.3.12-alpine3.20 8.3-alpine 8.3-alpine3.20 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8-alpine was pulled 1.6K times last month Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.12	1 week ago

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-alpine

Name	8.2.23-alpine3.20
Digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilities
Pushed	1 month ago
Size	36 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.2-alpine Newer image for same tag Also known as: 8.2.24-cli-alpine 8.2.24-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.24-alpine 8.2.24-alpine3.20 8.2-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.12-cli-alpine 8.3.12-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.12-alpine 8.3.12-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.12	1 week ago

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-fpm-alpine

Name	8.1.29-fpm-alpine3.20
Digest	sha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
Vulnerabilities
Pushed	1 month ago
Size	31 MB
Packages	51
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.1-fpm-alpine Newer image for same tag Also known as: 8.1.30-fpm-alpine 8.1.30-fpm-alpine3.20 8.1-fpm-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.1-fpm-alpine was pulled 18K times last month Image details: Size: 32 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Minor runtime version update Also known as: 8.2.24-fpm-alpine 8.2.24-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 32 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago
8.3-fpm-alpine Image has same number of vulnerabilities Also known as: 8.3.12-fpm-alpine 8.3.12-fpm-alpine3.20 8.3-fpm-alpine3.20 8-fpm-alpine 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 33 MB Flavor: alpine OS: 3.20	1 week ago

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:05e5e411ea0c647245def4e5775ab4dc956cba7e68be7d2ff47cc05de2393f2b
vulnerabilities
size	125 MB
packages	247

📦 Base Image php:8.1-alpine

also known as	8.1-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.29-alpine 8.1.29-alpine3.20 8.1.29-cli-alpine 8.1.29-cli-alpine3.20
digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:b8b1ea192e5e2288915062029fe70d65bbdb5e22773e6de311039b421d422671
vulnerabilities
size	102 MB
packages	230

📦 Base Image php:8.2-fpm-alpine

also known as	8.2-fpm-alpine3.20 8.2.23-fpm-alpine 8.2.23-fpm-alpine3.20
digest	sha256:2541389406d2ec619088fde1c8a3a1c9f3a263ee3ff3a2724e17cd78b168c89d
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:1805e5376e6fae800b6de08cefbac36913ade7ac01cfc2b721fcfa7809d48d40
vulnerabilities
size	126 MB
packages	247

📦 Base Image php:8.2-alpine

also known as	8.2-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2.23-cli-alpine 8.2.23-cli-alpine3.20
digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:646c1139882a20d94cfa56677049392cea29d1524a53f27f5c52393805afa00d
vulnerabilities
size	107 MB
packages	229

📦 Base Image php:8.1-alpine

also known as	8.1-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.29-alpine 8.1.29-alpine3.20 8.1.29-cli-alpine 8.1.29-cli-alpine3.20
digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-alpine

Name	8.2.23-alpine3.20
Digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilities
Pushed	1 month ago
Size	36 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.2-alpine Newer image for same tag Also known as: 8.2.24-cli-alpine 8.2.24-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.24-alpine 8.2.24-alpine3.20 8.2-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.12-cli-alpine 8.3.12-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.12-alpine 8.3.12-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.12	1 week ago

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name	8.1.29-alpine3.20
Digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilities
Pushed	1 month ago
Size	35 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.1-alpine Newer image for same tag Also known as: 8.1.30-cli-alpine 8.1.30-cli-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.30-alpine 8.1.30-alpine3.20 8.1-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.1-alpine was pulled 5.2K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.12-cli-alpine 8.3.12-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.12-alpine 8.3.12-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.12	1 week ago
8.2-alpine Minor runtime version update Also known as: 8.2.24-cli-alpine 8.2.24-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.24-alpine 8.2.24-alpine3.20 8.2-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-fpm-alpine

Name	8.2.23-fpm-alpine3.20
Digest	sha256:2541389406d2ec619088fde1c8a3a1c9f3a263ee3ff3a2724e17cd78b168c89d
Vulnerabilities
Pushed	1 month ago
Size	32 MB
Packages	51
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Newer image for same tag Also known as: 8.2.24-fpm-alpine 8.2.24-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 32 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-fpm-alpine Image has same number of vulnerabilities Also known as: 8.3.12-fpm-alpine 8.3.12-fpm-alpine3.20 8.3-fpm-alpine3.20 8-fpm-alpine 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 33 MB Flavor: alpine OS: 3.20	1 week ago

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:1f4050044f5dc75013188ffd9b2cf4ff19c5917d8bec991d060f31b2c78eb22e
vulnerabilities
size	127 MB
packages	247

📦 Base Image php:8-alpine

also known as	8-alpine3.20 8-cli-alpine 8-cli-alpine3.20 8.3-alpine 8.3-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 alpine alpine3.20 cli-alpine cli-alpine3.20
digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name	8.1.29-alpine3.20
Digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilities
Pushed	1 month ago
Size	35 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.1-alpine Newer image for same tag Also known as: 8.1.30-cli-alpine 8.1.30-cli-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.30-alpine 8.1.30-alpine3.20 8.1-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.1-alpine was pulled 5.2K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.12-cli-alpine 8.3.12-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.12-alpine 8.3.12-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.12	1 week ago
8.2-alpine Minor runtime version update Also known as: 8.2.24-cli-alpine 8.2.24-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.24-alpine 8.2.24-alpine3.20 8.2-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 36 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name	8.3.11-alpine3.20
Digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilities
Pushed	1 month ago
Size	37 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.3.11

The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8-alpine Newer image for same tag Also known as: 8.3.12-cli-alpine 8.3.12-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.12-alpine 8.3.12-alpine3.20 8.3-alpine 8.3-alpine3.20 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8-alpine was pulled 1.6K times last month Image details: Size: 37 MB Flavor: alpine OS: 3.20 Runtime: 8.3.12	1 week ago

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:b3c10bb0d3205468685baab5d76b6064ac08b0cd27580b527f6936e73ec1b4c1
vulnerabilities
size	103 MB
packages	230

📦 Base Image php:8-fpm-alpine

also known as	8-fpm-alpine3.20 8.3-fpm-alpine 8.3-fpm-alpine3.20 8.3.11-fpm-alpine 8.3.11-fpm-alpine3.20 fpm-alpine fpm-alpine3.20
digest	sha256:6cf4a9ecc6a3626c62b37f83190750e6ea76a65c924ec6900d1c5b6d0e2456fc
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[github-actions]

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-fpm-alpine

Name	fpm-alpine3.20
Digest	sha256:6cf4a9ecc6a3626c62b37f83190750e6ea76a65c924ec6900d1c5b6d0e2456fc
Vulnerabilities
Pushed	1 month ago
Size	32 MB
Packages	51
Flavor	alpine
OS	3.20

The base image is also available under the supported tag(s): 8-fpm-alpine3.20, 8.3-fpm-alpine, 8.3-fpm-alpine3.20, fpm-alpine, fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8-fpm-alpine Newer image for same tag Also known as: 8.3.12-fpm-alpine 8.3.12-fpm-alpine3.20 8.3-fpm-alpine 8.3-fpm-alpine3.20 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains equal number of packages 8-fpm-alpine was pulled 4.8K times last month Image details: Size: 33 MB Flavor: alpine OS: 3.20	1 week ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Minor runtime version update Also known as: 8.2.24-fpm-alpine 8.2.24-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Image is smaller by 133 KB Tag was pushed more recently Image has same number of vulnerabilities Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 32 MB Flavor: alpine OS: 3.20 Runtime: 8.2.24	1 week ago
8.1-fpm-alpine Minor runtime version update Also known as: 8.1.30-fpm-alpine 8.1.30-fpm-alpine3.20 8.1-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Image is smaller by 642 KB Tag was pushed more recently Image has same number of vulnerabilities Image contains equal number of packages 8.1-fpm-alpine is the fourth most popular tag with 18K pulls per month Image details: Size: 32 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 week ago