chore(deps): update gcr.io/distroless/java21-debian12:nonroot docker digest to ebac018 (beta)

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
gcr.io/distroless/java21-debian12	final	digest	2985410 -> ebac018

---

Configuration

📅 Schedule: Branch creation - "* 0-3 1 * *" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	5		0	0.07s
✅ BASH	bash-exec	4		0	0.02s
✅ BASH	shellcheck	4		0	0.04s
✅ BASH	shfmt	4		0	0.01s
✅ DOCKERFILE	hadolint	1		0	0.1s
✅ EDITORCONFIG	editorconfig-checker	259		0	1.78s
✅ GROOVY	npm-groovy-lint	2		0	12.51s
✅ JAVA	checkstyle	82		0	9.36s
✅ JSON	jsonlint	89		0	0.24s
✅ JSON	npm-package-json-lint	yes		no	0.71s
✅ JSON	prettier	89		0	0.8s
✅ JSON	v8r	89		0	82.55s
✅ MARKDOWN	markdownlint	8		0	0.67s
✅ REPOSITORY	checkov	yes		no	15.32s
✅ REPOSITORY	gitleaks	yes		no	0.78s
✅ REPOSITORY	git_diff	yes		no	0.07s
✅ REPOSITORY	grype	yes		no	16.04s
✅ REPOSITORY	kics	yes		no	14.32s
✅ REPOSITORY	secretlint	yes		no	1.21s
✅ REPOSITORY	syft	yes		no	3.48s
✅ REPOSITORY	trivy	yes		no	7.72s
✅ REPOSITORY	trivy-sbom	yes		no	1.47s
✅ REPOSITORY	trufflehog	yes		no	5.4s
✅ XML	xmllint	35		0	0.06s
✅ YAML	prettier	16		0	1.0s
✅ YAML	v8r	16		0	22.04s
✅ YAML	yamllint	16		0	0.6s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

• oxsecurity/megalinter/flavors/[email protected] (83 linters)

MegaLinter is graciously provided by

[github-actions]

Code Coverage Report

Overall Project	73.57%	🍏

There is no coverage information present for the Files changed

[github-actions]

Trivy image scan report

ghcr.io/bzkf/obds-to-fhir:pr-222 (debian 12.9)

No Vulnerabilities found

No Misconfigurations found

Java

15 known vulnerabilities found (CRITICAL: 0 HIGH: 11 MEDIUM: 3 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
ca.uhn.hapi.fhir:org.hl7.fhir.r4	CVE-2024-45294	HIGH	6.3.11	6.3.23
ca.uhn.hapi.fhir:org.hl7.fhir.r4	CVE-2024-51132	HIGH	6.3.11	6.4.0
ca.uhn.hapi.fhir:org.hl7.fhir.r4	CVE-2024-52007	HIGH	6.3.11	6.4.0
ca.uhn.hapi.fhir:org.hl7.fhir.utilities	CVE-2024-45294	HIGH	6.3.11	6.3.23
ca.uhn.hapi.fhir:org.hl7.fhir.utilities	CVE-2024-51132	HIGH	6.3.11	6.4.0
ca.uhn.hapi.fhir:org.hl7.fhir.utilities	CVE-2024-52007	HIGH	6.3.11	6.4.0
ch.qos.logback:logback-core	CVE-2024-12798	MEDIUM	1.5.6	1.5.13, 1.3.15
ch.qos.logback:logback-core	CVE-2024-12801	LOW	1.5.6	1.5.13, 1.3.15
commons-io:commons-io	CVE-2024-47554	HIGH	2.11.0	2.14.0
org.apache.tomcat.embed:tomcat-embed-core	CVE-2024-50379	HIGH	10.1.26	11.0.2, 10.1.34, 9.0.98
org.apache.tomcat.embed:tomcat-embed-core	CVE-2024-56337	HIGH	10.1.26	11.0.2, 10.1.34, 9.0.98
org.springframework:spring-context	CVE-2024-38820	MEDIUM	6.1.11	6.1.14
org.springframework:spring-web	CVE-2024-38809	MEDIUM	6.1.11	5.3.38, 6.0.23, 6.1.12
org.springframework:spring-webmvc	CVE-2024-38816	HIGH	6.1.11	6.1.13
org.springframework:spring-webmvc	CVE-2024-38819	HIGH	6.1.11	6.1.14

No Misconfigurations found