File tree Expand file tree Collapse file tree 3 files changed +8
-5
lines changed
helm/attestation-verifier/charts/trustagent/templates Expand file tree Collapse file tree 3 files changed +8
-5
lines changed Original file line number Diff line number Diff line change @@ -26,3 +26,7 @@ CVE-2025-52881
2626
2727# TODO: Remove once kata-container release with upgreaded containerd is available
2828CVE-2024-25621
29+ CVE-2025-68121
30+ CVE-2026-24051
31+ CVE-2025-61726
32+ CVE-2025-61730
Original file line number Diff line number Diff line change @@ -38,7 +38,7 @@ metadata:
3838 command : ["/bin/sh", "-c"]
3939 args :
4040 - >
41- chown -R 503:500 /opt/verifier && chmod -R 751 /opt/verifier
41+ chown -R 503:500 /opt/verifier/* && chmod -R 751 /opt/verifier/*
4242 securityContext :
4343 runAsUser : 0
4444 privileged : false
@@ -129,10 +129,9 @@ metadata:
129129 - name : {{ include "factory.name" . }}
130130 {{ include "factory.imageContainer" . | nindent 10 | trim}}
131131 securityContext :
132- privileged : false
132+ privileged : true
133133 runAsUser : 0
134- readOnlyRootFilesystem : true
135- allowPrivilegeEscalation : false
134+ readOnlyRootFilesystem : false
136135 envFrom :
137136 - configMapRef :
138137 name : {{ include "factory.name" . }}
Original file line number Diff line number Diff line change 11scan :
22 skip-files :
3- - attestation-verifier/charts/trustagent/templates/daemonset-suefi.yaml
3+ - helm/ attestation-verifier/charts/trustagent/templates/daemonset-suefi.yaml
44
55ignorefile : " .trivyignore"
You can’t perform that action at this time.
0 commit comments