Netbox v3.4 in Azure with Trivy Scan is failing #943

bene2342 · 2023-02-08T17:09:26Z

bene2342
Feb 8, 2023

I am trying to deploy netbox v3.4 in Azure with TrivyScan enable during the pipeline run. Which fails due to the following open CVE's:

===============================================================
Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

Node.js (node-pkg)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

2023-02-08T16:36:19.974Z INFO Table result includes only package filenames. Use '--format json' option to get the full path to the package file.

Python (python-pkg)

Total: 1 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 1, CRITICAL: 0)

opt/netbox/netbox/static/drf-yasg/redoc/redoc.min.js (secrets)

Total: 1 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 1)

+----------+-----------------------+----------+---------+---------------------------------------------------------+
| CATEGORY | DESCRIPTION | SEVERITY | LINE NO | MATCH |
+----------+-----------------------+----------+---------+---------------------------------------------------------+
| AWS | AWS Secret Access Key | CRITICAL | 2 | 2:Math.ceil(Number(e))}},{key:*****",value:function(e){ |
+----------+-----------------------+----------+---------+---------------------------------------------------------+

If I disable the trivy the Docker container will be build and pushed but I would prefer to have the affected library lxml updated. Any chance to apply those updates within the official Netbox Docker build?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Netbox v3.4 in Azure with Trivy Scan is failing #943

{{title}}

Replies: 0 comments

Select a reply

Netbox v3.4 in Azure with Trivy Scan is failing #943

bene2342 Feb 8, 2023

Node.js (node-pkg)

Python (python-pkg)

opt/netbox/netbox/static/drf-yasg/redoc/redoc.min.js (secrets)

Replies: 0 comments

bene2342
Feb 8, 2023