dangerzone

mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00

History

Alex Pyrgiotis 7f50ad2e48 ci: Make our security scans stricter Our security scans previously alerted us on critical CVEs that have a fix. In this commit, we ask to be alerted on CVEs that don't have a fix yet, so that we can have them in our radar. Since the introduction of these security checks, we have only once encountered a case where our container was vulnerable to a CVE that Alpine Linux had not fixed yet. This means that the maintenance burden of this change will probably be minimal.	2023-12-06 17:57:19 +02:00
..
workflows	ci: Make our security scans stricter	2023-12-06 17:57:19 +02:00

Our security scans previously alerted us on critical CVEs that have a
fix. In this commit, we ask to be alerted on CVEs that don't have a fix
yet, so that we can have them in our radar.

Since the introduction of these security checks, we have only once
encountered a case where our container was vulnerable to a CVE that
Alpine Linux had not fixed yet. This means that the maintenance burden
of this change will probably be minimal.

2023-12-06 17:57:19 +02:00

workflows

ci: Make our security scans stricter

2023-12-06 17:57:19 +02:00