chore(findings): opensource/jupyterhub/k8s-hub
Summary
opensource/jupyterhub/k8s-hub has 9 new findings discovered during continuous monitoring.
| id | source | severity | package |
|---|---|---|---|
| CVE-2007-2379 | anchore_cve | Medium | jquery-3.6.0 |
| CVE-2015-7561 | anchore_cve | Low | kubernetes-12.0.1 |
| CVE-2016-1905 | anchore_cve | High | kubernetes-12.0.1 |
| CVE-2016-1906 | anchore_cve | Critical | kubernetes-12.0.1 |
| CVE-2016-7075 | anchore_cve | High | kubernetes-12.0.1 |
| CVE-2020-8554 | anchore_cve | Medium | kubernetes-12.0.1 |
| CVE-2021-25740 | anchore_cve | Low | kubernetes-12.0.1 |
| CVE-2022-24785 | twistlock_cve | High | moment-2.29.1 |
| GHSA-8hfj-j24r-96c4 | anchore_cve | High | moment-2.29.1 |
VAT: https://vat.dso.mil/vat/container/8699?branch=master
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/opensource/jupyter/jupyterhub-k8s-hub/-/jobs/9878888
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official
Edited by Ghost User