Skip to content

fix: bump git-server Alpine base for libexpat remediation#27

Open
plural-copilot[bot] wants to merge 1 commit into
mainfrom
agent/remediate-git-server-libexpat-1751290100000
Open

fix: bump git-server Alpine base for libexpat remediation#27
plural-copilot[bot] wants to merge 1 commit into
mainfrom
agent/remediate-git-server-libexpat-1751290100000

Conversation

@plural-copilot

Copy link
Copy Markdown

Summary

  • bump the soft-serve/git-server container base image from alpine:3.22 to alpine:3.22.1
  • remediate the owned mgmt/console git-server vulnerability by rebuilding on an Alpine base expected to include libexpat 2.8.2-r0+
  • leave the GitOps image tag bump for a separate follow-up after the rebuilt image is published

Plural Service: mgmt/console

This PR addresses the mgmt/console service vulnerability remediation for git-server. The deployed vulnerable image was ghcr.io/pluralsh/git-server:v0.12.27, and this change makes the minimal root-cause update in the image build path so the next published git-server image is rebuilt from a fixed Alpine base.

A GitOps image tag bump should happen separately after the rebuilt tag is published.

@plural-copilot plural-copilot Bot left a comment

Copy link
Copy Markdown
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This PR was generated by the codex Plural Agent Runtime. Here's some useful information you might want to know to evaluate the ai's perfomance:

Name Details
💬 Prompt Create a remediation PR in this repo for the only actionable owned vulnerability in the mgmt/console service....
🔗 Run history View run history

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants