From 9f2714c27d08920c543b21b74938a890cbcdc7b6 Mon Sep 17 00:00:00 2001 From: Sherif Akoush Date: Wed, 25 Sep 2024 17:30:05 +0100 Subject: [PATCH 1/2] Use latest released version in security_tests.yml --- .github/workflows/security_tests.yml | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/security_tests.yml b/.github/workflows/security_tests.yml index 2778c67997..367ccd5af3 100644 --- a/.github/workflows/security_tests.yml +++ b/.github/workflows/security_tests.yml @@ -70,7 +70,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/seldon-core-executor:1.18.0 + image: seldonio/seldon-core-executor:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=executor/Dockerfile.executor security-image-operator: @@ -83,7 +83,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/seldon-core-operator:1.18.0 + image: seldonio/seldon-core-operator:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=operator/Dockerfile security-image-python-base: @@ -96,7 +96,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/seldon-core-s2i-python37-ubi8:1.18.0 + image: seldonio/seldon-core-s2i-python37-ubi8:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=wrappers/s2i/python/Dockerfile security-image-python-sklearn: @@ -108,7 +108,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/sklearnserver:1.18.0 + image: seldonio/sklearnserver:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high security-image-python-mlflow: @@ -120,7 +120,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/mlflowserver:1.18.0 + image: seldonio/mlflowserver:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high security-image-python-xgboost: @@ -132,7 +132,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/xgboostserver:1.18.0 + image: seldonio/xgboostserver:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high security-image-alibi-explain: @@ -145,7 +145,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/alibiexplainer:1.18.0 + image: seldonio/alibiexplainer:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=components/alibi-explain-server/Dockerfile security-image-alibi-detect: @@ -158,7 +158,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/alibi-detect-server:1.18.0 + image: seldonio/alibi-detect-server:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=components/alibi-detect-server/Dockerfile security-image-initializer-rclone: @@ -171,5 +171,5 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/rclone-storage-initializer:1.18.0 + image: seldonio/rclone-storage-initializer:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=components/rclone-storage-initializer/Dockerfile From 3d01941672c3e817869a3fbbf422bda7109870d6 Mon Sep 17 00:00:00 2001 From: Sherif Akoush Date: Thu, 26 Sep 2024 12:57:20 +0100 Subject: [PATCH 2/2] Use the new seldon-core-s2i-python3 image for scaning --- .github/workflows/security_tests.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/security_tests.yml b/.github/workflows/security_tests.yml index 367ccd5af3..da09647fb6 100644 --- a/.github/workflows/security_tests.yml +++ b/.github/workflows/security_tests.yml @@ -96,7 +96,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - image: seldonio/seldon-core-s2i-python37-ubi8:1.18.2 + image: seldonio/seldon-core-s2i-python3:1.18.2 args: --fail-on=upgradable --app-vulns --severity-threshold=high --file=wrappers/s2i/python/Dockerfile security-image-python-sklearn: