Anchore-Grype Security Scans #131
Annotations
10 warnings
scan (builds/debian/Base.Dockerfile, CommandBox)
The following actions uses node12 which is deprecated and will be forced to run on node16: actions/checkout@v2, docker/build-push-action@v2. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
The following actions uses Node.js version which is deprecated and will be forced to run on node20: actions/checkout@v2, docker/build-push-action@v2, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
The `save-state` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
The `save-state` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
scan (builds/debian/Base.Dockerfile, CommandBox)
Unexpected input(s) 'acs-report-enable', valid inputs are ['image', 'path', 'sbom', 'fail-build', 'output-format', 'severity-cutoff', 'only-fixed', 'add-cpes-if-none', 'by-cve', 'grype-version', 'vex']
|
scan (builds/debian/Base.Dockerfile, CommandBox)
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
|