management-api-for-apache-cassandra icon indicating copy to clipboard operation
management-api-for-apache-cassandra copied to clipboard
verified publisher icon k8ssandra

Bump dependencies to fix vulnerabilities (#696)

Open irajtaghlidi opened this issue 5 months ago • 0 comments

Fixes https://github.com/k8ssandra/management-api-for-apache-cassandra/issues/696

…/playground/k8ssandra_upgrade/vuln ❯❯❯ grype k8ssandra/cass-management-api:5.0.5-ubi-patched-2 --only-fixed                                                      
 ✔ Loaded image                                                                                                                                                                      index.docker.io/k8ssandra/cass-management-api:5.0.5-ubi-patched-2
 ✔ Parsed image                                                                                                                                                                sha256:d2c2b1e133fd793e7e545799c6cc1f59fc8198dcfb34cf55ab745f72e2d79d97
 ✔ Cataloged contents                                                                                                                                                                 8a7eced0867fb75b1770656aa8b1d5f8617d91a65e611bc6498768242d152f5e
   ├── ✔ Packages                        [413 packages]
   ├── ✔ File metadata                   [6,440 locations]
   ├── ✔ File digests                    [6,440 files]
   └── ✔ Executables                     [751 executables]
 ✔ Scanned for vulnerabilities     [0 vulnerability matches]
   ├── by severity: 0 critical, 2 high, 48 medium, 66 low, 1 negligible
   └── by status:   0 fixed, 117 not-fixed, 117 ignored
No vulnerabilities found

Related PR in CDC Agent: https://github.com/datastax/cdc-apache-cassandra/pull/214

irajtaghlidi avatar Nov 10 '25 10:11 irajtaghlidi