Skip to content

CVE Monitor: fixable vulnerabilities in ci-tools #86

New issue
New issue
Open
Open
CVE Monitor: fixable vulnerabilities in ci-tools#86
Labels
cve-monitorAutomated CVE monitoring alertssecuritySecurity-related change
@github-actions

Description

@github-actions
github-actions
bot
opened on Mar 12, 2026

CVE Monitor Alert

The scheduled Trivy scan found fixable CRITICAL or HIGH vulnerabilities
in the published image ghcr.io/knight-owl-dev/ci-tools:latest.

Next Steps

  1. Review the workflow run that triggered this alert
  2. Build and scan the image locally to investigate findings
  3. Update the base image or affected packages in images/ci-tools/Dockerfile
  4. Cut a new release — the publish workflow re-scans before publishing

See docs/supply-chain-security.md
for scanning policy details.

Metadata

Metadata

Assignees

No one assigned

    Labels

    cve-monitorAutomated CVE monitoring alertssecuritySecurity-related change

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions