chore(deps): Update trivy to v0.43.1 (#243)

* chore(deps): Update trivy to v0.43.1 * fix tests Signed-off-by: Simar <simar@linux.com> --------- Signed-off-by: Simar <simar@linux.com>
2026-05-14 03:02:40 +00:00 · 2023-07-17 11:07:42 +03:00
parent 41f05d9ecf
commit 3dd517d8c9
6 changed files with 8 additions and 14 deletions
@@ -64,7 +64,7 @@
              }
            }
          ],
-          "version": "0.42.1"
+          "version": "0.43.1"
        }
      },
      "results": [
@@ -37,7 +37,7 @@
              }
            }
          ],
-          "version": "0.42.1"
+          "version": "0.43.1"
        }
      },
      "results": [
@@ -75,15 +75,12 @@ Total: 19 (CRITICAL: 19)

 rust-app/Cargo.lock (cargo)
 ===========================
-Total: 2 (CRITICAL: 2)
+Total: 1 (CRITICAL: 1)

 ┌──────────┬────────────────┬──────────┬───────────────────┬───────────────┬─────────────────────────────────────────────────────────────┐
 │ Library  │ Vulnerability  │ Severity │ Installed Version │ Fixed Version │                            Title                            │
 ├──────────┼────────────────┼──────────┼───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤
-│ openssl  │ CVE-2018-20997 │ CRITICAL │ 0.8.3             │ 0.10.9        │ Use after free in openssl                                   │
-│          │                │          │                   │               │ https://avd.aquasec.com/nvd/cve-2018-20997                  │
-├──────────┼────────────────┤          ├───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤
-│ smallvec │ CVE-2021-25900 │          │ 0.6.9             │ 1.6.1, 0.6.14 │ An issue was discovered in the smallvec crate before 0.6.14 │
+│ smallvec │ CVE-2021-25900 │ CRITICAL │ 0.6.9             │ 1.6.1, 0.6.14 │ An issue was discovered in the smallvec crate before 0.6.14 │
 │          │                │          │                   │               │ and 1.x...                                                  │
 │          │                │          │                   │               │ https://avd.aquasec.com/nvd/cve-2021-25900                  │
 └──────────┴────────────────┴──────────┴───────────────────┴───────────────┴─────────────────────────────────────────────────────────────┘
@@ -75,15 +75,12 @@ Total: 19 (CRITICAL: 19)

 rust-app/Cargo.lock (cargo)
 ===========================
-Total: 5 (CRITICAL: 5)
+Total: 4 (CRITICAL: 4)

 ┌───────────┬────────────────┬──────────┬───────────────────┬───────────────┬─────────────────────────────────────────────────────────────┐
 │  Library  │ Vulnerability  │ Severity │ Installed Version │ Fixed Version │                            Title                            │
 ├───────────┼────────────────┼──────────┼───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤
-│ openssl   │ CVE-2018-20997 │ CRITICAL │ 0.8.3             │ 0.10.9        │ Use after free in openssl                                   │
-│           │                │          │                   │               │ https://avd.aquasec.com/nvd/cve-2018-20997                  │
-├───────────┼────────────────┤          ├───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤
-│ rand_core │ CVE-2020-25576 │          │ 0.4.0             │ 0.3.1, 0.4.2  │ An issue was discovered in the rand_core crate before 0.4.2 │
+│ rand_core │ CVE-2020-25576 │ CRITICAL │ 0.4.0             │ 0.3.1, 0.4.2  │ An issue was discovered in the rand_core crate before 0.4.2 │
 │           │                │          │                   │               │ for Rust....                                                │
 │           │                │          │                   │               │ https://avd.aquasec.com/nvd/cve-2020-25576                  │
 ├───────────┼────────────────┤          ├───────────────────┼───────────────┼─────────────────────────────────────────────────────────────┤