Many CVEs
davidkarlsen opened this issue · 3 comments
davidkarlsen commented
The latest release is quite old - and if you scan the image with RHACS it will show a number of vulnerabilities.
Should perhaps dependabot be added - some upgrades done and a new release be pushed?
davidkarlsen commented
See #143
raffaelespazzoli commented
did the new release in November fix these concerns? Can I close this issue?
davidkarlsen commented
New CVEs have appeared in the mean-time:
but I don't think they are all relevant - so I'd say close it for now.
Regular updates (for instance using dependabot) along with regular updates will fix the situation permanently.