diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 2b9d1757845..5adb8ba3d53 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -99,7 +99,7 @@ jobs: uses: actions/checkout@v4 - uses: actions/setup-go@v5 with: - go-version: "1.22" # By default, the go version is v1.15 in runner. + go-version: "1.24.0" # By default, the go version is v1.15 in runner. - name: Backend unit tests shell: bash run: | @@ -148,7 +148,8 @@ jobs: exit-code: '1' ignore-unfixed: true vuln-type: 'os,library' - severity: 'CRITICAL,HIGH' + severity: 'CRITICAL,HIGH' + docker-build-authentication-server: runs-on: ubuntu-latest @@ -176,7 +177,7 @@ jobs: ignore-unfixed: true vuln-type: 'os,library' severity: 'CRITICAL,HIGH' - + docker-build-subscriber: runs-on: ubuntu-latest needs: @@ -203,6 +204,7 @@ jobs: ignore-unfixed: true vuln-type: 'os,library' severity: 'CRITICAL,HIGH' + docker-build-frontend: runs-on: ubuntu-latest @@ -233,6 +235,7 @@ jobs: ignore-unfixed: true vuln-type: 'os,library' severity: 'CRITICAL,HIGH' + docker-build-event-tracker: runs-on: ubuntu-latest @@ -260,6 +263,7 @@ jobs: ignore-unfixed: true vuln-type: 'os,library' severity: 'CRITICAL,HIGH' + docker-build-dex-server: runs-on: ubuntu-latest @@ -286,3 +290,4 @@ jobs: ignore-unfixed: true vuln-type: 'os,library' severity: 'CRITICAL,HIGH' + diff --git a/chaoscenter/authentication/Dockerfile b/chaoscenter/authentication/Dockerfile index aa6b45827d8..19e211928c0 100644 --- a/chaoscenter/authentication/Dockerfile +++ b/chaoscenter/authentication/Dockerfile @@ -14,7 +14,7 @@ RUN go env RUN CGO_ENABLED=0 go build -o /output/server -v ./api/ -# Packaging stage +# PACKAGING STAGE # Use RedHat UBI minimal image as base FROM registry.access.redhat.com/ubi9/ubi-minimal:9.5 @@ -22,6 +22,9 @@ LABEL maintainer="LitmusChaos" ENV APP_DIR="/litmus" +# Ensure base packages (including libxslt) are patched +RUN microdnf -y update && microdnf clean all + COPY --from=builder /output/server $APP_DIR/ RUN chown 65534:0 $APP_DIR/server && chmod 755 $APP_DIR/server @@ -30,4 +33,4 @@ USER 65534 CMD ["./server"] -EXPOSE 3000 \ No newline at end of file +EXPOSE 3000 diff --git a/chaoscenter/authentication/go.mod b/chaoscenter/authentication/go.mod index 0d713c4dc88..4571a691037 100644 --- a/chaoscenter/authentication/go.mod +++ b/chaoscenter/authentication/go.mod @@ -13,7 +13,7 @@ require ( github.com/stretchr/testify v1.9.0 go.mongodb.org/mongo-driver v1.17.1 golang.org/x/crypto v0.43.0 - golang.org/x/oauth2 v0.21.0 + golang.org/x/oauth2 v0.27.0 google.golang.org/grpc v1.66.2 google.golang.org/protobuf v1.34.2 ) diff --git a/chaoscenter/authentication/go.sum b/chaoscenter/authentication/go.sum index 8db109cd516..23ee1077a3d 100644 --- a/chaoscenter/authentication/go.sum +++ b/chaoscenter/authentication/go.sum @@ -128,8 +128,8 @@ golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug golang.org/x/net v0.45.0 h1:RLBg5JKixCy82FtLJpeNlVM0nrSqpCRYzVU1n8kj0tM= golang.org/x/net v0.45.0/go.mod h1:ECOoLqd5U3Lhyeyo/QDCEVQ4sNgYsqvCZ722XogGieY= golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= -golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs= -golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI= +golang.org/x/oauth2 v0.27.0 h1:da9Vo7/tDv5RH/7nZDz1eMGS/q1Vv1N/7FCrBhI9I3M= +golang.org/x/oauth2 v0.27.0/go.mod h1:onh5ek6nERTohokkhCD/y2cV4Do3fxFHFuAejCkRWT8= golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=