Todo: Integrate Renovate to Update Dependencies
Feature description
Software dependencies are installed in base image. This is fine for an initial deployment, but integration of renovate to automatically upgrade software in the IronBank image of CFS-CheckovInput.
Use cases
Keep software updated in final image automatically.
Benefits
Increased security,
Requirements
N/A
Links / references
https://repo1.dso.mil/dsop/dccscr/-/blob/master/Hardening/Renovate.md
Definition of Done
-
Renovate config applied to image -
Renovate config tested functional -
Container still functions in deployed CFS cluster -
Renovate config for software updates introduces no additional vulnerabilities