test's People
test's Issues
[ANCHORE] Unsolicited random wisdom of the moment
details:
msg: Never give a sword to a man who can't dance - Confucius
id: eb60bbcc22774d129274ea1dc96dbb42
level: info
message: Unsolicited random wisdom of the moment
resource:
id: null
type: wisdom
user_id: admin
source:
base_url: http://localdev-anchore-engine-api:8668
hostid: localdev-anchore-engine-api-7d5dd9fc6d-97rxr
request_id: null
servicename: notifications
timestamp: '2021-01-27T17:25:36.897659'
type: system.test.random_wisdom
[ANCHORE] Remediation Alert for docker.io/nightfurys/test:alpine-clamav-apache2
Your Anchore Enterprise administrator has found multiple problems in image sha256:fae369639b16b645d50b6c18912c193f164c118dcc0d063c0eeb92d6f6a87339. Please review the list of recommended actions below.
Tag: docker.io/nightfurys/test:alpine-clamav-apache2
Image Digest: sha256:fae369639b16b645d50b6c18912c193f164c118dcc0d063c0eeb92d6f6a87339
Anchore Account: admin
Trigger ID: CVE-2019-0211+apache2
Gate: vulnerabilities
Trigger: package
Gate Action: stop
Check Output: HIGH Vulnerability found in os package type (APKG) - apache2 (fixed in: 2.4.39-r0)(CVE-2019-0211 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211)
Policy Bundle Name: anchore_dod_iron_bank_security_policies_v5.3
Policy Bundle ID: 28d78dda-8314-453d-bcea-b03879f40243
Remediation Suggestions:
• Upgrade apkg apache2 to 2.4.39-r0 (Recommended)
Notes: N/A
Trigger ID: CVE-2019-9517+apache2
Gate: vulnerabilities
Trigger: package
Gate Action: stop
Check Output: HIGH Vulnerability found in os package type (APKG) - apache2 (fixed in: 2.4.41-r0)(CVE-2019-9517 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9517)
Policy Bundle Name: anchore_dod_iron_bank_security_policies_v5.3
Policy Bundle ID: 28d78dda-8314-453d-bcea-b03879f40243
Remediation Suggestions:
• Upgrade apkg apache2 to 2.4.41-r0 (Recommended)
Notes: N/A
Trigger ID: CVE-2017-12374+clamav
Gate: vulnerabilities
Trigger: package
Gate Action: stop
Check Output: HIGH Vulnerability found in os package type (APKG) - clamav (fixed in: 0.99.3-r0)(CVE-2017-12374 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12374)
Policy Bundle Name: anchore_dod_iron_bank_security_policies_v5.3
Policy Bundle ID: 28d78dda-8314-453d-bcea-b03879f40243
Remediation Suggestions:
• Upgrade apkg clamav to 0.99.3-r0 in base image digest sha256:30778ce25a935b02b324073414e37c355de71bdd2a89109b98f370be4b629973 (Recommended)
Notes: N/A
Trigger ID: CVE-2017-12379+clamav
Gate: vulnerabilities
Trigger: package
Gate Action: stop
Check Output: HIGH Vulnerability found in os package type (APKG) - clamav (fixed in: 0.99.3-r0)(CVE-2017-12379 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12379)
Policy Bundle Name: anchore_dod_iron_bank_security_policies_v5.3
Policy Bundle ID: 28d78dda-8314-453d-bcea-b03879f40243
Remediation Suggestions:
• Upgrade apkg clamav to 0.99.3-r0 in base image digest sha256:30778ce25a935b02b324073414e37c355de71bdd2a89109b98f370be4b629973 (Recommended)
Notes: N/A
Trigger ID: CVE-2017-12377+clamav
Gate: vulnerabilities
Trigger: package
Gate Action: stop
Check Output: HIGH Vulnerability found in os package type (APKG) - clamav (fixed in: 0.99.3-r0)(CVE-2017-12377 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12377)
Policy Bundle Name: anchore_dod_iron_bank_security_policies_v5.3
Policy Bundle ID: 28d78dda-8314-453d-bcea-b03879f40243
Remediation Suggestions:
• Upgrade apkg clamav to 0.99.3-r0 in base image digest sha256:30778ce25a935b02b324073414e37c355de71bdd2a89109b98f370be4b629973 (Recommended)
Notes: N/A
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.