From 518f03f567236aa067405cd8fe34e80a3ee7c6c2 Mon Sep 17 00:00:00 2001 From: ammnt Date: Thu, 16 May 2024 16:52:48 +0300 Subject: [PATCH] updated: README.md and dependencies - release 1.5.1 --- .github/workflows/build.yml | 6 +++--- README.md | 1 + 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 43f2c0b..2b42653 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -25,7 +25,7 @@ jobs: steps: - name: Checkout repository🧱 - uses: actions/checkout@v4.1.4 + uses: actions/checkout@v4.1.5 - name: Install cosign🔒 uses: sigstore/cosign-installer@v3.5.0 @@ -80,7 +80,7 @@ jobs: curl -v http://127.0.0.1:8080 || exit 1 - name: Analyze for critical and high CVEs💊 - uses: docker/scout-action@v1.7.0 + uses: docker/scout-action@v1.8.0 with: command: cves,sbom image: ghcr.io/ammnt/angie:main @@ -93,7 +93,7 @@ jobs: sarif_file: sarif.output.json - name: Run Trivy vulnerability scanner💊 - uses: aquasecurity/trivy-action@0.19.0 + uses: aquasecurity/trivy-action@0.20.0 with: image-ref: ghcr.io/ammnt/angie:main scan-type: image diff --git a/README.md b/README.md index b7c2efa..a8db8e7 100644 --- a/README.md +++ b/README.md @@ -25,6 +25,7 @@ https://github.com/quictls/openssl - Added OCI labels and annotations; - No excess ENTRYPOINT in the image; - Slimmed version by Docker Slim tool; +- Scanned by vulnerability scanners: GitHub, Docker Scout, Snyk and Syft; - Prioritize ChaCha cipher patch and anonymous signature - removed "Server" header ("banner"):
https://github.com/ammnt/angie/blob/http3/Dockerfile