Skip to content

Commit 7f677f6

Browse files
johnwatson484johnwatson484
authored
Add exclusion to known Alpine vulnerability (#117)
1 parent 655314c commit 7f677f6

3 files changed

Lines changed: 4 additions & 2 deletions

File tree

.grype.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,3 +7,5 @@ ignore:
77
reason: "Node 24: Node-tar patched but not yet available in Node.js base images"
88
- vulnerability: GHSA-5j98-mcp5-4vw2
99
reason: "Node 20: Node-glob patched but not yet available in Node.js base images, issue not exploitable in npm context"
10+
- vulnerability: CVE-2025-60876
11+
reason: "Alpine BusyBox: No fix available"

Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
# Set default values for build arguments
2-
ARG DEFRA_VERSION=2.10.2
2+
ARG DEFRA_VERSION=2.10.3
33
ARG BASE_VERSION=24.12.0-alpine3.22
44

55
FROM node:$BASE_VERSION AS production

JOB.env

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,2 +1,2 @@
1-
DEFRA_VERSION=2.10.2
1+
DEFRA_VERSION=2.10.3
22
IMAGE_NAME=node

0 commit comments

Comments
 (0)