Skip to content

Commit 323fb86

Browse files
osv-robotgithub-actions[bot]
osv-robot
authored and
github-actions[bot]
committed
test: update cassettes
1 parent 408fcd6 commit 323fb86

9 files changed

Lines changed: 350 additions & 345 deletions

File tree

cmd/osv-scanner/scan/image/__snapshots__/command_test.snap

Lines changed: 18 additions & 19 deletions
Original file line numberDiff line numberDiff line change
@@ -444,7 +444,7 @@ Scanning local image tarball "./testdata/test-ubuntu.tar"
444444
445445
446446
Container Scanning Result (Ubuntu 22.04.5 LTS) (Based on "ubuntu" image):
447-
Total 25 packages affected by 83 known vulnerabilities (6 Critical, 20 High, 39 Medium, 6 Low, 12 Unknown) from 1 ecosystem.
447+
Total 25 packages affected by 82 known vulnerabilities (7 Critical, 19 High, 39 Medium, 6 Low, 11 Unknown) from 1 ecosystem.
448448
28 vulnerabilities can be fixed.
449449
450450
@@ -459,7 +459,7 @@ Ubuntu:22.04
459459
| gcc-12 | 12.3.0-1ubuntu1~22.04 | Partial fixes Available | 2 | gcc-12-base... (3) | # 4 Layer | ubuntu |
460460
| glibc | 2.35-0ubuntu3.8 | Partial fixes Available | 11 | libc-bin, libc6 | # 4 Layer | ubuntu |
461461
| gnupg2 | 2.2.27-3ubuntu2.1 | Partial fixes Available | 4 | gpgv | # 4 Layer | ubuntu |
462-
| gnutls28 | 3.7.3-4ubuntu1.5 | Partial fixes Available | 16 | libgnutls30 | # 4 Layer | ubuntu |
462+
| gnutls28 | 3.7.3-4ubuntu1.5 | Partial fixes Available | 15 | libgnutls30 | # 4 Layer | ubuntu |
463463
| krb5 | 1.19.2-2ubuntu0.4 | Partial fixes Available | 4 | libgssapi-krb5-2... (4) | # 4 Layer | ubuntu |
464464
| libcap2 | 1:2.44-1ubuntu0.22.04.1 | Fix Available | 2 | libcap2 | # 4 Layer | ubuntu |
465465
| libgcrypt20 | 1.9.4-3ubuntu3 | No fix available | 3 | libgcrypt20 | # 4 Layer | ubuntu |
@@ -496,7 +496,7 @@ Scanning local image tarball "./testdata/test-ubuntu.tar"
496496
497497
498498
Container Scanning Result (Ubuntu 22.04.5 LTS) (Based on "ubuntu" image):
499-
Total 25 packages affected by 83 known vulnerabilities (6 Critical, 20 High, 39 Medium, 6 Low, 12 Unknown) from 1 ecosystem.
499+
Total 25 packages affected by 82 known vulnerabilities (7 Critical, 19 High, 39 Medium, 6 Low, 11 Unknown) from 1 ecosystem.
500500
28 vulnerabilities can be fixed.
501501
502502
@@ -511,7 +511,7 @@ Ubuntu:22.04
511511
| gcc-12 | 12.3.0-1ubuntu1~22.04 | Partial fixes Available | 2 | gcc-12-base... (3) | # 4 Layer | ubuntu |
512512
| glibc | 2.35-0ubuntu3.8 | Partial fixes Available | 11 | libc-bin, libc6 | # 4 Layer | ubuntu |
513513
| gnupg2 | 2.2.27-3ubuntu2.1 | Partial fixes Available | 4 | gpgv | # 4 Layer | ubuntu |
514-
| gnutls28 | 3.7.3-4ubuntu1.5 | Partial fixes Available | 16 | libgnutls30 | # 4 Layer | ubuntu |
514+
| gnutls28 | 3.7.3-4ubuntu1.5 | Partial fixes Available | 15 | libgnutls30 | # 4 Layer | ubuntu |
515515
| krb5 | 1.19.2-2ubuntu0.4 | Partial fixes Available | 4 | libgssapi-krb5-2... (4) | # 4 Layer | ubuntu |
516516
| libcap2 | 1:2.44-1ubuntu0.22.04.1 | Fix Available | 2 | libcap2 | # 4 Layer | ubuntu |
517517
| libgcrypt20 | 1.9.4-3ubuntu3 | No fix available | 3 | libgcrypt20 | # 4 Layer | ubuntu |
@@ -567,7 +567,7 @@ Scanning local image tarball "./testdata/test-ubuntu-with-packages.tar"
567567
568568
569569
Container Scanning Result (Ubuntu 22.04.5 LTS) (Based on "ubuntu" image):
570-
Total 25 packages affected by 83 known vulnerabilities (6 Critical, 20 High, 39 Medium, 6 Low, 12 Unknown) from 1 ecosystem.
570+
Total 25 packages affected by 82 known vulnerabilities (7 Critical, 19 High, 39 Medium, 6 Low, 11 Unknown) from 1 ecosystem.
571571
28 vulnerabilities can be fixed.
572572
573573
@@ -582,7 +582,7 @@ Ubuntu:22.04
582582
| gcc-12 | 12.3.0-1ubuntu1~22.04 | Partial fixes Available | 2 | gcc-12-base... (3) | # 4 Layer | ubuntu |
583583
| glibc | 2.35-0ubuntu3.8 | Partial fixes Available | 11 | libc-bin, libc6 | # 4 Layer | ubuntu |
584584
| gnupg2 | 2.2.27-3ubuntu2.1 | Partial fixes Available | 4 | gpgv | # 4 Layer | ubuntu |
585-
| gnutls28 | 3.7.3-4ubuntu1.5 | Partial fixes Available | 16 | libgnutls30 | # 4 Layer | ubuntu |
585+
| gnutls28 | 3.7.3-4ubuntu1.5 | Partial fixes Available | 15 | libgnutls30 | # 4 Layer | ubuntu |
586586
| krb5 | 1.19.2-2ubuntu0.4 | Partial fixes Available | 4 | libgssapi-krb5-2... (4) | # 4 Layer | ubuntu |
587587
| libcap2 | 1:2.44-1ubuntu0.22.04.1 | Fix Available | 2 | libcap2 | # 4 Layer | ubuntu |
588588
| libgcrypt20 | 1.9.4-3ubuntu3 | No fix available | 3 | libgcrypt20 | # 4 Layer | ubuntu |
@@ -619,8 +619,8 @@ Scanning local image tarball "./testdata/test-java-full.tar"
619619
620620
621621
Container Scanning Result (Alpine Linux v3.21) (Based on "eclipse-temurin" image):
622-
Total 31 packages affected by 108 known vulnerabilities (5 Critical, 50 High, 46 Medium, 5 Low, 2 Unknown) from 2 ecosystems.
623-
108 vulnerabilities can be fixed.
622+
Total 31 packages affected by 110 known vulnerabilities (5 Critical, 52 High, 46 Medium, 5 Low, 2 Unknown) from 2 ecosystems.
623+
110 vulnerabilities can be fixed.
624624
625625
626626
Maven
@@ -660,7 +660,7 @@ Alpine:v3.21
660660
| busybox | 1.37.0-r9 | Fix Available | 2 | busybox... (3) | # 0 Layer | alpine |
661661
| expat | 2.6.4-r0 | Fix Available | 7 | libexpat | # 5 Layer | eclipse-temurin |
662662
| gnupg | 2.4.7-r0 | Fix Available | 2 | gnupg... (11) | # 5 Layer | eclipse-temurin |
663-
| gnutls | 3.8.8-r0 | Fix Available | 12 | gnutls | # 5 Layer | eclipse-temurin |
663+
| gnutls | 3.8.8-r0 | Fix Available | 14 | gnutls | # 5 Layer | eclipse-temurin |
664664
| libpng | 1.6.44-r0 | Fix Available | 11 | libpng | # 5 Layer | eclipse-temurin |
665665
| libtasn1 | 4.19.0-r2 | Fix Available | 2 | libtasn1 | # 5 Layer | eclipse-temurin |
666666
| musl | 1.2.5-r8 | Fix Available | 3 | musl, musl-utils | # 0 Layer | alpine |
@@ -755,8 +755,8 @@ Scanning local image tarball "./testdata/test-python-full.tar"
755755
756756
757757
Container Scanning Result (Debian GNU/Linux 10 (buster)) (Based on "python" image):
758-
Total 21 packages affected by 58 known vulnerabilities (1 Critical, 18 High, 21 Medium, 3 Low, 15 Unknown) from 2 ecosystems.
759-
56 vulnerabilities can be fixed.
758+
Total 21 packages affected by 59 known vulnerabilities (1 Critical, 19 High, 21 Medium, 3 Low, 15 Unknown) from 2 ecosystems.
759+
57 vulnerabilities can be fixed.
760760
761761
762762
PyPI
@@ -821,7 +821,7 @@ PyPI
821821
+---------+-------------------+---------------+------------+------------------+---------------+
822822
| PACKAGE | INSTALLED VERSION | FIX AVAILABLE | VULN COUNT | INTRODUCED LAYER | IN BASE IMAGE |
823823
+---------+-------------------+---------------+------------+------------------+---------------+
824-
| urllib3 | 1.24.3 | Fix Available | 9 | # 17 Layer | -- |
824+
| urllib3 | 1.24.3 | Fix Available | 10 | # 17 Layer | -- |
825825
+---------+-------------------+---------------+------------+------------------+---------------+
826826
+----------------------------------------------------------------------------------------------+
827827
| Source:artifact:/usr/local/lib/python3.9/site-packages/werkzeug-3.1.4.dist-info/METADATA |
@@ -1480,7 +1480,7 @@ You can also view the full vulnerability list in your terminal with: `osv-scanne
14801480
"index": 17
14811481
}
14821482
},
1483-
"groups": 9,
1483+
"groups": 10,
14841484
"vulnerabilities": [
14851485
"PYSEC-2020-148",
14861486
"PYSEC-2021-108",
@@ -1492,6 +1492,7 @@ You can also view the full vulnerability list in your terminal with: `osv-scanne
14921492
"GHSA-g4mx-q9vg-27p4",
14931493
"GHSA-gm62-xv2j-4w53",
14941494
"GHSA-pq67-6m6q-mj2v",
1495+
"GHSA-qccp-gfcp-xxvc",
14951496
"GHSA-v845-jxx5-vc9f",
14961497
"GHSA-wqvq-5m8c-6g24"
14971498
]
@@ -3449,7 +3450,7 @@ Scanning local image tarball "./testdata/test-node_modules-npm-full.tar"
34493450
"index": 4
34503451
}
34513452
},
3452-
"groups": 16,
3453+
"groups": 15,
34533454
"vulnerabilities": [
34543455
"USN-7635-1",
34553456
"USN-8043-1",
@@ -3472,8 +3473,7 @@ Scanning local image tarball "./testdata/test-node_modules-npm-full.tar"
34723473
"UBUNTU-CVE-2026-42013",
34733474
"UBUNTU-CVE-2026-42014",
34743475
"UBUNTU-CVE-2026-42015",
3475-
"UBUNTU-CVE-2026-5260",
3476-
"UBUNTU-CVE-2026-5419"
3476+
"UBUNTU-CVE-2026-5260"
34773477
]
34783478
},
34793479
{
@@ -4541,7 +4541,7 @@ Scanning local image tarball "./testdata/test-ubuntu.tar"
45414541
"index": 4
45424542
}
45434543
},
4544-
"groups": 16,
4544+
"groups": 15,
45454545
"vulnerabilities": [
45464546
"USN-7635-1",
45474547
"USN-8043-1",
@@ -4564,8 +4564,7 @@ Scanning local image tarball "./testdata/test-ubuntu.tar"
45644564
"UBUNTU-CVE-2026-42013",
45654565
"UBUNTU-CVE-2026-42014",
45664566
"UBUNTU-CVE-2026-42015",
4567-
"UBUNTU-CVE-2026-5260",
4568-
"UBUNTU-CVE-2026-5419"
4567+
"UBUNTU-CVE-2026-5260"
45694568
]
45704569
},
45714570
{

0 commit comments

Comments
 (0)