Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Spsh-1635 #109

Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Spsh-1635 #109

wants to merge 6 commits into from

Conversation

AlexanderUngefug
Copy link
Contributor

No description provided.

github-advanced-security[bot]
github-advanced-security bot found potential problems Dec 20, 2024
View reviewed changes
Copy link

@github-advanced-security github-advanced-security bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Trivy found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.

@niklaskoopmann
Copy link
Contributor

As much as I would like to embrace the technical benefits we could achieve through this PR (the ability to build Keycloak plugins and providers), I have a slight issue accepting 82 new vulnerabilities in something as crucial as our Keycloak repo. Suggestion: Keep Keycloak base image, do multi-stage build using the ubi8 image (COPY --from) and have the ubi8 container discarded before finishing.
I will leave this up to @pkleybolte and @kristoff-kiefer to decide for the future. But there seems to be a solution that will not make Trivy upset and do what we set out to do nonetheless.

niklaskoopmann
niklaskoopmann requested changes Dec 23, 2024
View reviewed changes
Copy link
Contributor

@niklaskoopmann niklaskoopmann left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see comment above

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@niklaskoopmann niklaskoopmann niklaskoopmann requested changes

@pkleybolte pkleybolte Awaiting requested review from pkleybolte

@YoussefBouch YoussefBouch Awaiting requested review from YoussefBouch

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@AlexanderUngefug @niklaskoopmann @kristoff-kiefer