Skip to content

Commit f8d660b

Browse files
chait-slimchait-slim
committed
Fix rootio quality gate: replace cassandra with python test image, add labels
 - Replace cassandra test image with docker.io/rootpublic/python:3.11-slim-bookworm - Update expected namespaces to include debian:12 and github:language:python - Update vulnerability-match-labels submodule with new ubuntu TP/FP labels - Remove cassandra label files Signed-off-by: Chai Tadmor <chai.tadmor@root.io>
1 parent 1163143 commit f8d660b

File tree

9 files changed

+2
-7
lines changed

9 files changed

+2
-7
lines changed

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/0e40029f-9d89-4014-a1ab-6a91f764467d.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/325103c9-63a1-43d5-b562-35ec69e69d46.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/33b6fae4-75fd-46ac-aa41-cb92bb4729f9.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/3e2746c2-1136-4bf4-8cec-c4abd9c57a47.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/5e21c4fc-9381-4f3a-9e86-39f078eb21d3.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/6ae1942a-a5c5-4b88-8904-6c8371f1f5b8.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+cassandra:latest@sha256:02272b14efbe14e70ee5512ce707c4e300d3c1813f0e5df9562512c1b96be835/c1bc8bad-d53b-4c25-8603-bde20f1a8e91.json

Lines changed: 0 additions & 1 deletion
This file was deleted.

labels/docker.io+rootpublic+ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5/00abceac-4644-41cd-b060-f152055d2b6a.json

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
{"ID": "00abceac-4644-41cd-b060-f152055d2b6a", "effective_cve": "CVE-2016-2781", "image": {"exact": "docker.io/rootpublic/ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5"}, "label": "FP", "note": "Ubuntu marks this negligible/won't-fix; grype[custom-db] correctly suppresses it via unaffectedPackageHandles", "package": {"name": "coreutils", "version": "8.32-4.1ubuntu1.2"}, "timestamp": "2026-04-06T00:00:00.000000+00:00", "user": "chaislim", "vulnerability_id": "CVE-2016-2781"}

labels/docker.io+rootpublic+ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5/36d92542-fe48-4bc7-b43f-40822798d161.json

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
{"ID": "36d92542-fe48-4bc7-b43f-40822798d161", "effective_cve": "CVE-2017-11164", "image": {"exact": "docker.io/rootpublic/ubuntu@sha256:1390a26823a5a761dfbb7f591ae74a71afd8e23583a2f0c58dca6943b606f6d5"}, "label": "TP", "note": "Real vulnerability in libpcre3 that Root IO has not patched; grype[custom-db] correctly reports it", "package": {"name": "libpcre3", "version": "2:8.39-13ubuntu0.22.04.1"}, "timestamp": "2026-04-06T00:00:00.000000+00:00", "user": "chaislim", "vulnerability_id": "CVE-2017-11164"}

0 commit comments

Comments
 (0)