Skip to content

Commit 4b561da

Browse files
chait-slimclaude
chait-slim
and
claude
committed
Add rootio labels: replace cassandra with python image, add ubuntu TP/FP labels
- Remove cassandra image labels (replaced by python:3.11-slim-bookworm) - Add TP label for CVE-2017-11164/libpcre3 on ubuntu image (unpatched by Root IO) - Add FP label for CVE-2016-2781/coreutils on ubuntu image (won't-fix, suppressed) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
1 parent 1163143 commit 4b561da

File tree

9 files changed

+2
-7
lines changed

9 files changed

+2
-7
lines changed

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/0e40029f-9d89-4014-a1ab-6a91f764467d.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/325103c9-63a1-43d5-b562-35ec69e69d46.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/33b6fae4-75fd-46ac-aa41-cb92bb4729f9.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/3e2746c2-1136-4bf4-8cec-c4abd9c57a47.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/5e21c4fc-9381-4f3a-9e86-39f078eb21d3.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/6ae1942a-a5c5-4b88-8904-6c8371f1f5b8.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/c1bc8bad-d53b-4c25-8603-bde20f1a8e91.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5/00abceac-4644-41cd-b060-f152055d2b6a.json

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
{"ID": "00abceac-4644-41cd-b060-f152055d2b6a", "effective_cve": "CVE-2016-2781", "image": {"exact": "docker.io/rootpublic/ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5"}, "label": "FP", "note": "Ubuntu marks this negligible/won't-fix; grype[custom-db] correctly suppresses it via unaffectedPackageHandles", "package": {"name": "coreutils", "version": "8.32-4.1ubuntu1.2"}, "timestamp": "2026-04-06T00:00:00.000000+00:00", "user": "chaislim", "vulnerability_id": "CVE-2016-2781"}

labels/docker.io+rootpublic+ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5/36d92542-fe48-4bc7-b43f-40822798d161.json

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
{"ID": "36d92542-fe48-4bc7-b43f-40822798d161", "effective_cve": "CVE-2017-11164", "image": {"exact": "docker.io/rootpublic/ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5"}, "label": "TP", "note": "Real vulnerability in libpcre3 that Root IO has not patched; grype[custom-db] correctly reports it", "package": {"name": "libpcre3", "version": "2:8.39-13ubuntu0.22.04.1"}, "timestamp": "2026-04-06T00:00:00.000000+00:00", "user": "chaislim", "vulnerability_id": "CVE-2017-11164"}

0 commit comments

Comments
 (0)