Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update ghcr.io/blockjoy/avalanchego Docker tag to v20250122.17 #261

Merged
merged 1 commit into from
Jan 22, 2025
Merged

Update ghcr.io/blockjoy/avalanchego Docker tag to v20250122.17 #261

merged 1 commit into from
Jan 22, 2025

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 22, 2025

This PR contains the following updates:

Package Type Update Change
ghcr.io/blockjoy/avalanchego minor v20250122.16 -> v20250122.17
ghcr.io/blockjoy/avalanchego stage minor v20250122.16 -> v20250122.17

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot enabled auto-merge (squash) January 22, 2025 20:27
@github-actions GitHub Actions
Copy link

🔍 Trivy Dockerfile Scan Results for protocols/avalanche/avalanchego/Dockerfile

Click to view findings 

Dockerfile (dockerfile)
=======================
Tests: 21 (SUCCESSES: 18, FAILURES: 3)
Failures: 3 (HIGH: 1, CRITICAL: 2)

AVD-DS-0002 (HIGH): Specify at least 1 USER command in Dockerfile with non-root user as argument
════════════════════════════════════════
Running containers with 'root' user can lead to a container escape situation. It is a best practice to run containers as non-root users, which can be done by adding a 'USER' statement to the Dockerfile.

See https://avd.aquasec.com/misconfig/ds002
────────────────────────────────────────


AVD-DS-0031 (CRITICAL): Possible exposure of secret env "CLOUDFLARE_API_KEY" in ARG
════════════════════════════════════════
Passing secrets via `build-args` or envs or copying secret files can leak them out

See https://avd.aquasec.com/misconfig/ds031
────────────────────────────────────────
 Dockerfile:8
────────────────────────────────────────
   8 [ ARG CLOUDFLARE_API_KEY
────────────────────────────────────────


AVD-DS-0031 (CRITICAL): Possible exposure of secret env "CLOUDFLARE_API_KEY" in ENV
════════════════════════════════════════
Passing secrets via `build-args` or envs or copying secret files can leak them out

See https://avd.aquasec.com/misconfig/ds031
────────────────────────────────────────
 Dockerfile:12
────────────────────────────────────────
  12 [ ENV CLOUDFLARE_API_KEY=${CLOUDFLARE_API_KEY}
────────────────────────────────────────

Please review these findings and make necessary fixes to improve the security of your Dockerfile.

@github-actions GitHub Actions
Copy link

The following nodes have been deployed on fra02.dev.blockjoy.com:

  • infinitely-delicate-gobbler, running variant avalanchego-mainnet-archive
  • intensely-careful-glider, running variant avalanchego-testnet-archive

These nodes will be cleaned up on PR merge or close and replaced on PR update.

@renovate renovate bot merged commit 286f699 into main Jan 22, 2025
12 checks passed
@github-actions GitHub Actions
Copy link

All nodes have been cleaned up after merge

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants