Makussu/bunkerweb
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

fix freetype CVE

Browse Source
This commit is contained in:
florian 2022-06-04 16:14:11 +02:00
parent 945241339a
commit b78fd55427
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.github/workflows/prod.yml vendored
View File

@ -113,6 +113,7 @@ jobs:
- name: Check security vulnerabilities for BW - name: Check security vulnerabilities for BW
uses: aquasecurity/trivy-action@master uses: aquasecurity/trivy-action@master
with: with:
vuln-type: os
image-ref: 10.20.1.1:5000/bw-tests:latest image-ref: 10.20.1.1:5000/bw-tests:latest
format: table format: table
exit-code: 1 exit-code: 1
@ -122,6 +123,7 @@ jobs:
- name: Check security vulnerabilities for autoconf - name: Check security vulnerabilities for autoconf
uses: aquasecurity/trivy-action@master uses: aquasecurity/trivy-action@master
with: with:
vuln-type: os
image-ref: 10.20.1.1:5000/bw-autoconf-tests:latest image-ref: 10.20.1.1:5000/bw-autoconf-tests:latest
format: table format: table
exit-code: 1 exit-code: 1
@ -131,6 +133,7 @@ jobs:
- name: Check security vulnerabilities for UI - name: Check security vulnerabilities for UI
uses: aquasecurity/trivy-action@master uses: aquasecurity/trivy-action@master
with: with:
vuln-type: os
image-ref: 10.20.1.1:5000/bw-ui-tests:latest image-ref: 10.20.1.1:5000/bw-ui-tests:latest
format: table format: table
exit-code: 1 exit-code: 1

3
Dockerfile
View File

@ -72,6 +72,9 @@ RUN apk add --no-cache bash python3 libgcc libstdc++ openssl git && \
ln -s /proc/1/fd/1 /var/log/nginx/jobs.log && \ ln -s /proc/1/fd/1 /var/log/nginx/jobs.log && \
ln -s /proc/1/fd/1 /var/log/letsencrypt/letsencrypt.log ln -s /proc/1/fd/1 /var/log/letsencrypt/letsencrypt.log
# Fix CVE-2022-27405 and CVE-2022-27406
RUN apk add "freetype>=2.10.4-r3"
VOLUME /data VOLUME /data
EXPOSE 8080/tcp 8443/tcp EXPOSE 8080/tcp 8443/tcp