ricozen commented on issue #3269: URL: https://github.com/apache/hop/issues/3269#issuecomment-2098745198
Hi, First, thanks for the great work done on HOP ! We use HOP in docker images and we check their vulnerabilities with Trivy v0.44 This issue is reported as critical because of the [cve-2022-37865](https://avd.aquasec.com/nvd/2022/cve-2022-37865/) and high because of the [cve-2022-37866](https://avd.aquasec.com/nvd/2022/cve-2022-37866/) and [cve-2022-46751](https://avd.aquasec.com/nvd/2022/cve-2022-46751/). **Trivy suggests to move at least to 2.5.2** Our corp is quite fussy about security issues... Would it be possible to make the update in the next release please ? Regards -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@hop.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org