RH8-minimal and version "pinning"
This MR is an attempt to reduce false positives. This was done by switching to the RH8-minimal image, updating only the packages with issues identified by anchore and twistlock, and even removing a couple packages. The end result is that more of the vulnerabilities found come from CodeSonar and not the base OS.
Edited by Nathan Chadwick