1
0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2024-12-21 06:08:06 +00:00

Upgrading apk-tools (#944)

Upgrading apk-tools to remediate CVE-2021-36159
( https://snyk.io/vuln/SNYK-ALPINE314-APKTOOLS-1533752 )

Fixes #943

Signed-off-by: Dave Hay <david_hay@uk.ibm.com>

Co-authored-by: Yoav Rotem <yoavrotems97@gmail.com>
This commit is contained in:
Dave Hay 2021-08-03 15:21:24 +01:00 committed by GitHub
parent 25ba9e2fad
commit 222e696934
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -16,6 +16,10 @@ WORKDIR /opt/kube-bench/
# https://github.com/aquasecurity/kube-bench/issues/109 # https://github.com/aquasecurity/kube-bench/issues/109
RUN apk --no-cache add procps RUN apk --no-cache add procps
# Upgrading apk-tools to remediate CVE-2021-36159 - https://snyk.io/vuln/SNYK-ALPINE314-APKTOOLS-1533752
# https://github.com/aquasecurity/kube-bench/issues/943
RUN apk --no-cache upgrade apk-tools
# Openssl is used by OpenShift tests # Openssl is used by OpenShift tests
# https://github.com/aquasecurity/kube-bench/issues/535 # https://github.com/aquasecurity/kube-bench/issues/535
RUN apk --no-cache add openssl RUN apk --no-cache add openssl