Security Scans flagging go-complier v1.13.15

Question

dli-spoton opened this issue 2 years ago · 3 comments

Our security scanners are still finding go-complier version 1.13.15 on Chamber version 2.11.0.

I think it might be because the Dockerfile is building from golang:1.13-alpine here.

Relates to: #363

Answer 1 · 2023-01-13T18:13:58.000Z

Hey @dli-spoton, we're working on this and should have a fix up soon: #368. Thanks for letting us know.

Answer 2 · 2023-01-13T19:22:41.000Z

@dli-spoton This is mitigated in chamber v2.11.1.

Answer 3 · 2023-01-13T19:23:42.000Z

completed in #368