Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(mlflow): Update ghcr.io/mlflow/mlflow Docker tag to v2.11.3 #481

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

fix(mlflow): Update ghcr.io/mlflow/mlflow Docker tag to v2.11.3

055c2b7
Select commit
Loading
Failed to load commit list.
Open

fix(mlflow): Update ghcr.io/mlflow/mlflow Docker tag to v2.11.3 #481

fix(mlflow): Update ghcr.io/mlflow/mlflow Docker tag to v2.11.3
055c2b7
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / Trivy failed May 28, 2024 in 4s

2 configurations not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 2 configurations present on refs/heads/main were not found:

Actions workflow (release.yaml)

  • ❓  .github/workflows/release.yaml:build
  • ❓  .github/workflows/release.yaml:trivy-scan

New alerts in code changed by this pull request

Security Alerts:

  • 1 high
  • 1 low

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 1 in mlflow/Dockerfile

See this annotation in the file changed.

Code scanning / Trivy

Image user should not be 'root' High

Artifact: mlflow/Dockerfile
Type: dockerfile
Vulnerability DS002
Severity: HIGH
Message: Specify at least 1 USER command in Dockerfile with non-root user as argument
Link: DS002

Check notice on line 1 in mlflow/Dockerfile

See this annotation in the file changed.

Code scanning / Trivy

No HEALTHCHECK defined Low

Artifact: mlflow/Dockerfile
Type: dockerfile
Vulnerability DS026
Severity: LOW
Message: Add HEALTHCHECK instruction in your Dockerfile
Link: DS026