Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

deps(deps): update actions/checkout action to v4.2.1 #56

Merged
merged 1 commit into from
Oct 7, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 7, 2024

This PR contains the following updates:

Package Type Update Change
actions/checkout action patch v4.2.0 -> v4.2.1

Release Notes

actions/checkout (actions/checkout)

v4.2.1

Compare Source


Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested a review from lotyp as a code owner October 7, 2024 18:37
@renovate renovate bot enabled auto-merge (rebase) October 7, 2024 18:37
@github-actions github-actions bot added the type: maintenance For maintenance, refactor and testing (perf, chore, style, revert, refactor, test, build, ci) label Oct 7, 2024
Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:4cbcf329440748d486c1988c40c534f76a8dc56ea1cb2c6d6a4f72c68b32579b
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size108 MB
packages229
📦 Base Image php:8-alpine
also known as
  • 8-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • 8.3-alpine
  • 8.3-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.11-alpine
  • 8.3.11-alpine3.20
  • 8.3.11-cli-alpine
  • 8.3.11-cli-alpine3.20
  • alpine
  • alpine3.20
  • cli-alpine
  • cli-alpine3.20
digestsha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:95fa79481c83a9f1114a230077f83bf80da205ec35fe7be382da225dc8fff6fd
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size107 MB
packages229
📦 Base Image php:8.2-alpine
also known as
  • 8.2-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.23-alpine
  • 8.2.23-alpine3.20
  • 8.2.23-cli-alpine
  • 8.2.23-cli-alpine3.20
digestsha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:8d3c911761bbacdc055405838c6858eb05b30f981a84c3ec432f2a35383b343e
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size102 MB
packages230
📦 Base Image php:8.1-fpm-alpine
also known as
  • 8.1-fpm-alpine3.20
  • 8.1.29-fpm-alpine
  • 8.1.29-fpm-alpine3.20
digestsha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name8.3.11-alpine3.20
Digestsha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size37 MB
Packages50
Flavoralpine
OS3.20
Runtime8.3.11
The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8-alpine
Newer image for same tag
Also known as:
  • 8.3.12-cli-alpine
  • 8.3.12-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.3.12-alpine
  • 8.3.12-alpine3.20
  • 8.3-alpine
  • 8.3-alpine3.20
  • 8-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8-alpine was pulled 1.6K times last month
Image details:
  • Size: 37 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.12
1 week ago



Change base image

✅ There are no tag recommendations at this time.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-alpine

Name8.2.23-alpine3.20
Digestsha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size36 MB
Packages50
Flavoralpine
OS3.20
Runtime8.2.23
The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8.2-alpine
Newer image for same tag
Also known as:
  • 8.2.24-cli-alpine
  • 8.2.24-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.24-alpine
  • 8.2.24-alpine3.20
  • 8.2-alpine3.20
Benefits:
  • Patch runtime version update
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 36 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.12-cli-alpine
  • 8.3.12-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.3.12-alpine
  • 8.3.12-alpine3.20
  • 8.3-alpine3.20
  • 8-alpine
  • 8-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 37 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.12
1 week ago



Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-fpm-alpine

Name8.1.29-fpm-alpine3.20
Digestsha256:c2a4daca3f96f06a5b3fa60bf58d933e147e43b607b87dffdd31f0e430843848
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size31 MB
Packages51
Flavoralpine
OS3.20
Runtime8.1.29
The base image is also available under the supported tag(s): 8.1-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8.1-fpm-alpine
Newer image for same tag
Also known as:
  • 8.1.30-fpm-alpine
  • 8.1.30-fpm-alpine3.20
  • 8.1-fpm-alpine3.20
Benefits:
  • Patch runtime version update
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.1-fpm-alpine was pulled 18K times last month
Image details:
  • Size: 32 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.1.30
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.2-fpm-alpine
Minor runtime version update
Also known as:
  • 8.2.24-fpm-alpine
  • 8.2.24-fpm-alpine3.20
  • 8.2-fpm-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-fpm-alpine was pulled 4.1K times last month
Image details:
  • Size: 32 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



8.3-fpm-alpine
Image has same number of vulnerabilities
Also known as:
  • 8.3.12-fpm-alpine
  • 8.3.12-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
  • 8-fpm-alpine
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
Benefits:
  • Same OS detected
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 33 MB
  • Flavor: alpine
  • OS: 3.20
1 week ago



Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:05e5e411ea0c647245def4e5775ab4dc956cba7e68be7d2ff47cc05de2393f2b
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size125 MB
packages247
📦 Base Image php:8.1-alpine
also known as
  • 8.1-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.29-alpine
  • 8.1.29-alpine3.20
  • 8.1.29-cli-alpine
  • 8.1.29-cli-alpine3.20
digestsha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:b8b1ea192e5e2288915062029fe70d65bbdb5e22773e6de311039b421d422671
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size102 MB
packages230
📦 Base Image php:8.2-fpm-alpine
also known as
  • 8.2-fpm-alpine3.20
  • 8.2.23-fpm-alpine
  • 8.2.23-fpm-alpine3.20
digestsha256:2541389406d2ec619088fde1c8a3a1c9f3a263ee3ff3a2724e17cd78b168c89d
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:1805e5376e6fae800b6de08cefbac36913ade7ac01cfc2b721fcfa7809d48d40
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size126 MB
packages247
📦 Base Image php:8.2-alpine
also known as
  • 8.2-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.23-alpine
  • 8.2.23-alpine3.20
  • 8.2.23-cli-alpine
  • 8.2.23-cli-alpine3.20
digestsha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:646c1139882a20d94cfa56677049392cea29d1524a53f27f5c52393805afa00d
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size107 MB
packages229
📦 Base Image php:8.1-alpine
also known as
  • 8.1-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.29-alpine
  • 8.1.29-alpine3.20
  • 8.1.29-cli-alpine
  • 8.1.29-cli-alpine3.20
digestsha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-alpine

Name8.2.23-alpine3.20
Digestsha256:664c504580bbf49e465ef58c3a501ea48c21fbfbef991f34bee822a670fbad49
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size36 MB
Packages50
Flavoralpine
OS3.20
Runtime8.2.23
The base image is also available under the supported tag(s): 8.2-alpine3.20, 8.2-cli-alpine, 8.2-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8.2-alpine
Newer image for same tag
Also known as:
  • 8.2.24-cli-alpine
  • 8.2.24-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.24-alpine
  • 8.2.24-alpine3.20
  • 8.2-alpine3.20
Benefits:
  • Patch runtime version update
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 36 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.12-cli-alpine
  • 8.3.12-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.3.12-alpine
  • 8.3.12-alpine3.20
  • 8.3-alpine3.20
  • 8-alpine
  • 8-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 37 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.12
1 week ago



Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name8.1.29-alpine3.20
Digestsha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size35 MB
Packages50
Flavoralpine
OS3.20
Runtime8.1.29
The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8.1-alpine
Newer image for same tag
Also known as:
  • 8.1.30-cli-alpine
  • 8.1.30-cli-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.30-alpine
  • 8.1.30-alpine3.20
  • 8.1-alpine3.20
Benefits:
  • Patch runtime version update
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.1-alpine was pulled 5.2K times last month
Image details:
  • Size: 36 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.1.30
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.12-cli-alpine
  • 8.3.12-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.3.12-alpine
  • 8.3.12-alpine3.20
  • 8.3-alpine3.20
  • 8-alpine
  • 8-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 37 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.12
1 week ago



8.2-alpine
Minor runtime version update
Also known as:
  • 8.2.24-cli-alpine
  • 8.2.24-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.24-alpine
  • 8.2.24-alpine3.20
  • 8.2-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 36 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.2-fpm-alpine

Name8.2.23-fpm-alpine3.20
Digestsha256:2541389406d2ec619088fde1c8a3a1c9f3a263ee3ff3a2724e17cd78b168c89d
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size32 MB
Packages51
Flavoralpine
OS3.20
Runtime8.2.23
The base image is also available under the supported tag(s): 8.2-fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8.2-fpm-alpine
Newer image for same tag
Also known as:
  • 8.2.24-fpm-alpine
  • 8.2.24-fpm-alpine3.20
  • 8.2-fpm-alpine3.20
Benefits:
  • Patch runtime version update
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-fpm-alpine was pulled 4.1K times last month
Image details:
  • Size: 32 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.3-fpm-alpine
Image has same number of vulnerabilities
Also known as:
  • 8.3.12-fpm-alpine
  • 8.3.12-fpm-alpine3.20
  • 8.3-fpm-alpine3.20
  • 8-fpm-alpine
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
Benefits:
  • Same OS detected
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 33 MB
  • Flavor: alpine
  • OS: 3.20
1 week ago



Copy link

github-actions bot commented Oct 7, 2024

Outdated

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:1f4050044f5dc75013188ffd9b2cf4ff19c5917d8bec991d060f31b2c78eb22e
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size127 MB
packages247
📦 Base Image php:8-alpine
also known as
  • 8-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • 8.3-alpine
  • 8.3-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8.3.11-alpine
  • 8.3.11-alpine3.20
  • 8.3.11-cli-alpine
  • 8.3.11-cli-alpine3.20
  • alpine
  • alpine3.20
  • cli-alpine
  • cli-alpine3.20
digestsha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8.1-alpine

Name8.1.29-alpine3.20
Digestsha256:4001f8453a837283a053931e0d085366d36f77fd5a2a18c31950c4121cd4a5ec
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size35 MB
Packages50
Flavoralpine
OS3.20
Runtime8.1.29
The base image is also available under the supported tag(s): 8.1-alpine3.20, 8.1-cli-alpine, 8.1-cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8.1-alpine
Newer image for same tag
Also known as:
  • 8.1.30-cli-alpine
  • 8.1.30-cli-alpine3.20
  • 8.1-cli-alpine
  • 8.1-cli-alpine3.20
  • 8.1.30-alpine
  • 8.1.30-alpine3.20
  • 8.1-alpine3.20
Benefits:
  • Patch runtime version update
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.1-alpine was pulled 5.2K times last month
Image details:
  • Size: 36 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.1.30
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.3-alpine
Minor runtime version update
Also known as:
  • 8.3.12-cli-alpine
  • 8.3.12-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.3.12-alpine
  • 8.3.12-alpine3.20
  • 8.3-alpine3.20
  • 8-alpine
  • 8-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
Image details:
  • Size: 37 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.12
1 week ago



8.2-alpine
Minor runtime version update
Also known as:
  • 8.2.24-cli-alpine
  • 8.2.24-cli-alpine3.20
  • 8.2-cli-alpine
  • 8.2-cli-alpine3.20
  • 8.2.24-alpine
  • 8.2.24-alpine3.20
  • 8.2-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-alpine was pulled 1.8K times last month
Image details:
  • Size: 36 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



Copy link

github-actions bot commented Oct 7, 2024

Outdated

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-alpine

Name8.3.11-alpine3.20
Digestsha256:fbd89ae244b08e08eece68310e23f0eb7865496203892ce649781d5d716e544f
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size37 MB
Packages50
Flavoralpine
OS3.20
Runtime8.3.11
The base image is also available under the supported tag(s): 8-alpine3.20, 8-cli-alpine, 8-cli-alpine3.20, 8.3-alpine, 8.3-alpine3.20, 8.3-cli-alpine, 8.3-cli-alpine3.20, alpine, alpine3.20, cli-alpine, cli-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8-alpine
Newer image for same tag
Also known as:
  • 8.3.12-cli-alpine
  • 8.3.12-cli-alpine3.20
  • 8.3-cli-alpine
  • 8.3-cli-alpine3.20
  • 8-cli-alpine
  • 8-cli-alpine3.20
  • cli-alpine
  • cli-alpine3.20
  • alpine
  • alpine3.20
  • 8.3.12-alpine
  • 8.3.12-alpine3.20
  • 8.3-alpine
  • 8.3-alpine3.20
  • 8-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8-alpine was pulled 1.6K times last month
Image details:
  • Size: 37 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.3.12
1 week ago



Change base image

✅ There are no tag recommendations at this time.

Copy link

github-actions bot commented Oct 7, 2024

🔍 Vulnerabilities of wayofdev/php-dev:latest

📦 Image Reference wayofdev/php-dev:latest
digestsha256:b3c10bb0d3205468685baab5d76b6064ac08b0cd27580b527f6936e73ec1b4c1
vulnerabilitiescritical: 0 high: 3 medium: 0 low: 0
size103 MB
packages230
📦 Base Image php:8-fpm-alpine
also known as
  • 8-fpm-alpine3.20
  • 8.3-fpm-alpine
  • 8.3-fpm-alpine3.20
  • 8.3.11-fpm-alpine
  • 8.3.11-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
digestsha256:6cf4a9ecc6a3626c62b37f83190750e6ea76a65c924ec6900d1c5b6d0e2456fc
vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
critical: 0 high: 3 medium: 0 low: 0 stdlib 1.22.5 (golang)

pkg:golang/[email protected]

high : CVE--2024--34158

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

high : CVE--2024--34156

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.04%
EPSS Percentile16th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

high : CVE--2022--30635

Affected range<1.22.7
Fixed version1.22.7
EPSS Score0.19%
EPSS Percentile56th percentile
Description

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Copy link

github-actions bot commented Oct 7, 2024

Recommended fixes for image wayofdev/php-dev:latest

Base image is php:8-fpm-alpine

Namefpm-alpine3.20
Digestsha256:6cf4a9ecc6a3626c62b37f83190750e6ea76a65c924ec6900d1c5b6d0e2456fc
Vulnerabilitiescritical: 0 high: 0 medium: 1 low: 0
Pushed1 month ago
Size32 MB
Packages51
Flavoralpine
OS3.20
The base image is also available under the supported tag(s): 8-fpm-alpine3.20, 8.3-fpm-alpine, 8.3-fpm-alpine3.20, fpm-alpine, fpm-alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
8-fpm-alpine
Newer image for same tag
Also known as:
  • 8.3.12-fpm-alpine
  • 8.3.12-fpm-alpine3.20
  • 8.3-fpm-alpine
  • 8.3-fpm-alpine3.20
  • 8-fpm-alpine3.20
  • fpm-alpine
  • fpm-alpine3.20
Benefits:
  • Same OS detected
  • Newer image for same tag
  • Tag was pushed more recently
  • Image has similar size
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8-fpm-alpine was pulled 4.8K times last month
Image details:
  • Size: 33 MB
  • Flavor: alpine
  • OS: 3.20
1 week ago



Change base image

TagDetailsPushedVulnerabilities
8.2-fpm-alpine
Minor runtime version update
Also known as:
  • 8.2.24-fpm-alpine
  • 8.2.24-fpm-alpine3.20
  • 8.2-fpm-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image is smaller by 133 KB
  • Tag was pushed more recently
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.2-fpm-alpine was pulled 4.1K times last month
Image details:
  • Size: 32 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.2.24
1 week ago



8.1-fpm-alpine
Minor runtime version update
Also known as:
  • 8.1.30-fpm-alpine
  • 8.1.30-fpm-alpine3.20
  • 8.1-fpm-alpine3.20
Benefits:
  • Same OS detected
  • Minor runtime version update
  • Image is smaller by 642 KB
  • Tag was pushed more recently
  • Image has same number of vulnerabilities
  • Image contains equal number of packages
  • 8.1-fpm-alpine is the fourth most popular tag with 18K pulls per month
Image details:
  • Size: 32 MB
  • Flavor: alpine
  • OS: 3.20
  • Runtime: 8.1.30
1 week ago



@way-finder-bot way-finder-bot self-requested a review October 7, 2024 18:39
@way-finder-bot way-finder-bot self-assigned this Oct 7, 2024
@renovate renovate bot merged commit a5b0abc into master Oct 7, 2024
17 checks passed
@renovate renovate bot deleted the renovate/actions-checkout-4.x branch October 7, 2024 18:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
type: maintenance For maintenance, refactor and testing (perf, chore, style, revert, refactor, test, build, ci)
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant