deps(deps): update actions/checkout action to v4.2.2

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	v4.2.1 -> v4.2.2

---

Release Notes

actions/checkout (actions/checkout)

v4.2.2

Compare Source

• url-helper.ts now leverages well-known environment variables by @​jww3 in https://github.com/actions/checkout/pull/1941
• Expand unit test coverage for isGhes by @​jww3 in https://github.com/actions/checkout/pull/1946

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of ubuntu:20.04

📦 Image Reference ubuntu:20.04

digest	sha256:6013ae1a63c2ee58a8949f03c6366a3ef6a2f386a7db27d86de2de965e9f450b
vulnerabilities
size	32 MB
packages	127

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:c3688f312cf0fcec8f2cd64fb2d7f58e42e309a5e1290511ddc2df1774093bb9
vulnerabilities
size	125 MB
packages	247

📦 Base Image php:8.1-alpine

also known as	8.1-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.29-alpine 8.1.29-alpine3.20 8.1.29-cli-alpine 8.1.29-cli-alpine3.20
digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name	8.1.29-alpine3.20
Digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilities
Pushed	2 months ago
Size	35 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.1-alpine Newer image for same tag Also known as: 8.1.30-cli-alpine 8.1.30-cli-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.30-alpine 8.1.30-alpine3.20 8.1-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.1-alpine was pulled 5.2K times last month Image details: Size: 38 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 month ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.13-cli-alpine 8.3.13-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.13-alpine 8.3.13-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages Image details: Size: 39 MB Flavor: alpine OS: 3.20 Runtime: 8.3.13	2 weeks ago
8.2-alpine Minor runtime version update Also known as: 8.2.25-cli-alpine 8.2.25-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.25-alpine 8.2.25-alpine3.20 8.2-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 38 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:0d582e0c1fb06eab91f1e1afe0a678e11a56abd706f88dc2f2ad1e88c52f894b
vulnerabilities
size	107 MB
packages	229

📦 Base Image php:8.1-alpine

also known as	8.1-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.29-alpine 8.1.29-alpine3.20 8.1.29-cli-alpine 8.1.29-cli-alpine3.20
digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name	8.1.29-alpine3.20
Digest	sha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilities
Pushed	2 months ago
Size	35 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.1-alpine Newer image for same tag Also known as: 8.1.30-cli-alpine 8.1.30-cli-alpine3.20 8.1-cli-alpine 8.1-cli-alpine3.20 8.1.30-alpine 8.1.30-alpine3.20 8.1-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.1-alpine was pulled 5.2K times last month Image details: Size: 38 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 month ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.13-cli-alpine 8.3.13-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.13-alpine 8.3.13-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages Image details: Size: 39 MB Flavor: alpine OS: 3.20 Runtime: 8.3.13	2 weeks ago
8.2-alpine Minor runtime version update Also known as: 8.2.25-cli-alpine 8.2.25-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.25-alpine 8.2.25-alpine3.20 8.2-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 38 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:124678780c7149e0b0a07aff35d13050f7cad8e4ab3ec9d44a2663f95566210f
vulnerabilities
size	127 MB
packages	247

📦 Base Image php:8-alpine

also known as	8-alpine3.20 8-cli-alpine 8-cli-alpine3.20 8.3-alpine 8.3-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 alpine alpine3.20 cli-alpine cli-alpine3.20
digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:0cab5d606f5b007175ca08d3d0805ef66bba80853f1368c84f309438ceeba4b9
vulnerabilities
size	126 MB
packages	247

📦 Base Image php:8.2-alpine

also known as	8.2-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2.23-cli-alpine 8.2.23-cli-alpine3.20
digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-alpine

Name	8.2.23-alpine3.20
Digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilities
Pushed	2 months ago
Size	36 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.2-alpine Newer image for same tag Also known as: 8.2.25-cli-alpine 8.2.25-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.25-alpine 8.2.25-alpine3.20 8.2-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 38 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.13-cli-alpine 8.3.13-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.13-alpine 8.3.13-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages Image details: Size: 39 MB Flavor: alpine OS: 3.20 Runtime: 8.3.13	2 weeks ago

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name	8.3.11-alpine3.20
Digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilities
Pushed	2 months ago
Size	37 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.3.11

The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8-alpine Newer image for same tag Also known as: 8.3.13-cli-alpine 8.3.13-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.13-alpine 8.3.13-alpine3.20 8.3-alpine 8.3-alpine3.20 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8-alpine was pulled 1.6K times last month Image details: Size: 39 MB Flavor: alpine OS: 3.20 Runtime: 8.3.13	2 weeks ago

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:85b9c945c287ba536594f1684f30e3aeacbfcf652b09e3246fb88434cb459f1b
vulnerabilities
size	102 MB
packages	230

📦 Base Image php:8.2-fpm-alpine

also known as	8.2-fpm-alpine3.20 8.2.23-fpm-alpine 8.2.23-fpm-alpine3.20
digest	sha256:2541389406d2ec619088fde1c8a3a1c9f3a263ee3ff3a2724e17cd78b168c89d
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-fpm-alpine

Name	8.2.23-fpm-alpine3.20
Digest	sha256:2541389406d2ec619088fde1c8a3a1c9f3a263ee3ff3a2724e17cd78b168c89d
Vulnerabilities
Pushed	2 months ago
Size	32 MB
Packages	51
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Newer image for same tag Also known as: 8.2.25-fpm-alpine 8.2.25-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 34 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-fpm-alpine Image introduces no new vulnerability but removes 3 Also known as: 8.3.13-fpm-alpine 8.3.13-fpm-alpine3.20 8.3-fpm-alpine3.20 8-fpm-alpine 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages Image details: Size: 35 MB Flavor: alpine OS: 3.20	2 weeks ago

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:3d77305e66823f9301243e024db481cdb1f23dcdaf996c043bb73e9450f25d97
vulnerabilities
size	107 MB
packages	229

📦 Base Image php:8.2-alpine

also known as	8.2-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.23-alpine 8.2.23-alpine3.20 8.2.23-cli-alpine 8.2.23-cli-alpine3.20
digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:cc08afd53c0855e18380cbded482081b1993c026c9c56b3ae5a75600e8abd461
vulnerabilities
size	108 MB
packages	229

📦 Base Image php:8-alpine

also known as	8-alpine3.20 8-cli-alpine 8-cli-alpine3.20 8.3-alpine 8.3-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8.3.11-alpine 8.3.11-alpine3.20 8.3.11-cli-alpine 8.3.11-cli-alpine3.20 alpine alpine3.20 cli-alpine cli-alpine3.20
digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:9710acc11c040abb3e5fe275a17f18c27baade576015f311197de2d85266e45d
vulnerabilities
size	102 MB
packages	230

📦 Base Image php:8.1-fpm-alpine

also known as	8.1-fpm-alpine3.20 8.1.29-fpm-alpine 8.1.29-fpm-alpine3.20
digest	sha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name	8.3.11-alpine3.20
Digest	sha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilities
Pushed	2 months ago
Size	37 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.3.11

The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8-alpine Newer image for same tag Also known as: 8.3.13-cli-alpine 8.3.13-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.13-alpine 8.3.13-alpine3.20 8.3-alpine 8.3-alpine3.20 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8-alpine was pulled 1.6K times last month Image details: Size: 39 MB Flavor: alpine OS: 3.20 Runtime: 8.3.13	2 weeks ago

Change base image

✅ There are no tag recommendations at this time.

[github-actions]

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest

digest	sha256:6f913be20a3a686b02e7480bb2d2b3711a472283d2ab32ddfdb9f0b71fdfc237
vulnerabilities
size	103 MB
packages	230

📦 Base Image php:8-fpm-alpine

also known as	8-fpm-alpine3.20 8.3-fpm-alpine 8.3-fpm-alpine3.20 8.3.11-fpm-alpine 8.3.11-fpm-alpine3.20 fpm-alpine fpm-alpine3.20
digest	sha256:6cf4a9ecc6a3626c62b37f83190750e6ea76a65c924ec6900d1c5b6d0e2456fc
vulnerabilities

stdlib 1.22.5 (golang) pkg:golang/stdlib@1.22.5 Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 17th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 57th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

postgresql16 16.3-r0 (apk) pkg:apk/alpine/postgresql16@16.3-r0?os_name=alpine&os_version=3.20 Affected range <16.4-r0 Fixed version 16.4-r0 EPSS Score 0.05% EPSS Percentile 20th percentile Description

[github-actions]

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-alpine

Name	8.2.23-alpine3.20
Digest	sha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilities
Pushed	2 months ago
Size	36 MB
Packages	50
Flavor	alpine
OS	3.20
Runtime	8.2.23

The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.2-alpine Newer image for same tag Also known as: 8.2.25-cli-alpine 8.2.25-cli-alpine3.20 8.2-cli-alpine 8.2-cli-alpine3.20 8.2.25-alpine 8.2.25-alpine3.20 8.2-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-alpine was pulled 1.8K times last month Image details: Size: 38 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.3-alpine Minor runtime version update Also known as: 8.3.13-cli-alpine 8.3.13-cli-alpine3.20 8.3-cli-alpine 8.3-cli-alpine3.20 8-cli-alpine 8-cli-alpine3.20 cli-alpine cli-alpine3.20 alpine alpine3.20 8.3.13-alpine 8.3.13-alpine3.20 8.3-alpine3.20 8-alpine 8-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages Image details: Size: 39 MB Flavor: alpine OS: 3.20 Runtime: 8.3.13	2 weeks ago

[github-actions]

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-fpm-alpine

Name	8.1.29-fpm-alpine3.20
Digest	sha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
Vulnerabilities
Pushed	2 months ago
Size	31 MB
Packages	51
Flavor	alpine
OS	3.20
Runtime	8.1.29

The base image is also available under the supported tag(s): 8.1-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8.1-fpm-alpine Newer image for same tag Also known as: 8.1.30-fpm-alpine 8.1.30-fpm-alpine3.20 8.1-fpm-alpine3.20	Benefits: Patch runtime version update Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.1-fpm-alpine was pulled 18K times last month Image details: Size: 34 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 month ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Minor runtime version update Also known as: 8.2.25-fpm-alpine 8.2.25-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 34 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago
8.3-fpm-alpine Image introduces no new vulnerability but removes 3 Also known as: 8.3.13-fpm-alpine 8.3.13-fpm-alpine3.20 8.3-fpm-alpine3.20 8-fpm-alpine 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages Image details: Size: 35 MB Flavor: alpine OS: 3.20	2 weeks ago

[github-actions]

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-fpm-alpine

Name	fpm-alpine3.20
Digest	sha256:6cf4a9ecc6a3626c62b37f83190750e6ea76a65c924ec6900d1c5b6d0e2456fc
Vulnerabilities
Pushed	2 months ago
Size	32 MB
Packages	51
Flavor	alpine
OS	3.20

The base image is also available under the supported tag(s): 8-fpm-alpine3.20, 8.3-fpm-alpine, 8.3-fpm-alpine3.20, fpm-alpine, fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

Tag	Details	Pushed	Vulnerabilities
8-fpm-alpine Newer image for same tag Also known as: 8.3.13-fpm-alpine 8.3.13-fpm-alpine3.20 8.3-fpm-alpine 8.3-fpm-alpine3.20 8-fpm-alpine3.20 fpm-alpine fpm-alpine3.20	Benefits: Same OS detected Newer image for same tag Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8-fpm-alpine was pulled 4.8K times last month Image details: Size: 35 MB Flavor: alpine OS: 3.20	2 weeks ago

Change base image

Tag	Details	Pushed	Vulnerabilities
8.2-fpm-alpine Minor runtime version update Also known as: 8.2.25-fpm-alpine 8.2.25-fpm-alpine3.20 8.2-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.2-fpm-alpine was pulled 4.1K times last month Image details: Size: 34 MB Flavor: alpine OS: 3.20 Runtime: 8.2.25	2 weeks ago
8.1-fpm-alpine Minor runtime version update Also known as: 8.1.30-fpm-alpine 8.1.30-fpm-alpine3.20 8.1-fpm-alpine3.20	Benefits: Same OS detected Minor runtime version update Tag was pushed more recently Image has similar size Image introduces no new vulnerability but removes 3 Image contains equal number of packages 8.1-fpm-alpine is the fourth most popular tag with 18K pulls per month Image details: Size: 34 MB Flavor: alpine OS: 3.20 Runtime: 8.1.30	1 month ago