diff --git a/.github/workflows/trivy-scan-table.yaml b/.github/workflows/trivy-scan-table.yaml
index 751c601a2..1fc9fabe3 100644
--- a/.github/workflows/trivy-scan-table.yaml
+++ b/.github/workflows/trivy-scan-table.yaml
@@ -145,12 +145,13 @@ jobs:
git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
git pull
echo "remove old reports. ids from removed images are: "
- cat platform-apps/charts/image-list-removed.json | jq '.[].id'
+ cat platform-apps/charts/image-list-removed.json | jq -r '.[].id'
# use find to remove files
# because it does not fail when no files exist
- for id in $( cat platform-apps/charts/image-list-removed.json | jq '.[].id' ) ; do
- find trivy-reports/ -type f -name 'report-${id}.md' -delete
+ for id in $( cat platform-apps/charts/image-list-removed.json | jq -r '.[].id' ) ; do
+ echo "delete file trivy-reports/report-${id}.md"
+ rm -f trivy-reports/report-${id}.md
done
# delete file again so it will not get committed
diff --git a/platform-apps/charts/grafana/Chart.lock b/platform-apps/charts/grafana/Chart.lock
index b8bf8a4d9..b460cafd8 100644
--- a/platform-apps/charts/grafana/Chart.lock
+++ b/platform-apps/charts/grafana/Chart.lock
@@ -1,6 +1,6 @@
dependencies:
- name: grafana
repository: https://grafana.github.io/helm-charts
- version: 8.8.4
-digest: sha256:e732fd6aaf2050a0d32b34181a9fd164a06810994967504bc72ce72fe47919c0
-generated: "2025-01-20T21:06:12.705840407Z"
+ version: 8.8.5
+digest: sha256:7d00311864444cf6aad7ba331ac4bafd669c85bfb77d5ee032ad812046d0dd3c
+generated: "2025-01-22T20:05:21.336149481Z"
diff --git a/platform-apps/charts/grafana/Chart.yaml b/platform-apps/charts/grafana/Chart.yaml
index 6a43fdbbe..d1ec08abc 100644
--- a/platform-apps/charts/grafana/Chart.yaml
+++ b/platform-apps/charts/grafana/Chart.yaml
@@ -26,5 +26,5 @@ appVersion: "1.0.0"
dependencies:
- name: grafana
alias: grafana
- version: 8.8.4
+ version: 8.8.5
repository: https://grafana.github.io/helm-charts
diff --git a/platform-apps/charts/image-list.json b/platform-apps/charts/image-list.json
index 4f89c8590..cf17e173a 100644
--- a/platform-apps/charts/image-list.json
+++ b/platform-apps/charts/image-list.json
@@ -371,13 +371,13 @@
},
{
"chart": "mimir",
- "image": "grafana/mimir:2.14.0",
- "id": "mimir_mimir_2.14.0"
+ "image": "grafana/mimir:2.15.0",
+ "id": "mimir_mimir_2.15.0"
},
{
"chart": "mimir",
- "image": "grafana/rollout-operator:v0.19.1",
- "id": "mimir_rollout-operator_v0.19.1"
+ "image": "grafana/rollout-operator:v0.21.0",
+ "id": "mimir_rollout-operator_v0.21.0"
},
{
"chart": "mimir",
diff --git a/platform-apps/charts/image-list.md b/platform-apps/charts/image-list.md
index 68e5272a0..759fc6131 100644
--- a/platform-apps/charts/image-list.md
+++ b/platform-apps/charts/image-list.md
@@ -94,8 +94,8 @@
* quay.io/minio/minio:RELEASE.2024-04-18T19-09-19Z
## mimir
* docker.io/nginxinc/nginx-unprivileged:1.27-alpine
-* grafana/mimir:2.14.0
-* grafana/rollout-operator:v0.19.1
+* grafana/mimir:2.15.0
+* grafana/rollout-operator:v0.21.0
* quay.io/minio/mc:RELEASE.2024-04-18T16-45-29Z
* quay.io/minio/minio:RELEASE.2024-04-18T19-09-19Z
## minio
diff --git a/platform-apps/charts/mimir/Chart.lock b/platform-apps/charts/mimir/Chart.lock
index eec60f759..ea2e0810c 100644
--- a/platform-apps/charts/mimir/Chart.lock
+++ b/platform-apps/charts/mimir/Chart.lock
@@ -1,6 +1,6 @@
dependencies:
- name: mimir-distributed
repository: https://grafana.github.io/helm-charts
- version: 5.5.1
-digest: sha256:80db4c1bde9a89b55015b84cb67d73b7c657c68d0c7bb0d357e59fe9c0d59aa0
-generated: "2024-10-21T18:46:53.456348289Z"
+ version: 5.6.0
+digest: sha256:24735b1cac55d71414d74b5c9105f20e7c398b035aef921266363ff7d7e86191
+generated: "2025-01-21T01:19:20.058907107Z"
diff --git a/platform-apps/charts/mimir/Chart.yaml b/platform-apps/charts/mimir/Chart.yaml
index 8abc4eb1e..3ad2e7e5b 100644
--- a/platform-apps/charts/mimir/Chart.yaml
+++ b/platform-apps/charts/mimir/Chart.yaml
@@ -26,6 +26,6 @@ appVersion: "1.0.0"
dependencies:
- name: mimir-distributed
alias: mimir
- version: 5.5.1
+ version: 5.6.0
repository: https://grafana.github.io/helm-charts
diff --git a/trivy-reports/report-mimir_mimir_2.14.0.md b/trivy-reports/report-mimir_mimir_2.14.0.md
deleted file mode 100644
index 27eac73b1..000000000
--- a/trivy-reports/report-mimir_mimir_2.14.0.md
+++ /dev/null
@@ -1,30 +0,0 @@
-
-Target grafana/mimir:2.14.0 (debian 12.7)
-No Vulnerabilities found
-No Misconfigurations found
-Target bin/mimir
-Vulnerabilities (2)
-
-
- | Package |
- ID |
- Severity |
- Installed Version |
- Fixed Version |
-
-
- golang.org/x/crypto |
- CVE-2024-45337 |
- CRITICAL |
- v0.27.0 |
- 0.31.0 |
-
-
- golang.org/x/net |
- CVE-2024-45338 |
- HIGH |
- v0.29.0 |
- 0.33.0 |
-
-
-No Misconfigurations found
diff --git a/trivy-reports/report-mimir_mimir_2.15.0.md b/trivy-reports/report-mimir_mimir_2.15.0.md
new file mode 100644
index 000000000..fa39e2c8c
--- /dev/null
+++ b/trivy-reports/report-mimir_mimir_2.15.0.md
@@ -0,0 +1,7 @@
+
+Target grafana/mimir:2.15.0 (debian 12.8)
+No Vulnerabilities found
+No Misconfigurations found
+Target bin/mimir
+No Vulnerabilities found
+No Misconfigurations found
diff --git a/trivy-reports/report-mimir_rollout-operator_v0.19.1.md b/trivy-reports/report-mimir_rollout-operator_v0.21.0.md
similarity index 63%
rename from trivy-reports/report-mimir_rollout-operator_v0.19.1.md
rename to trivy-reports/report-mimir_rollout-operator_v0.21.0.md
index 42fba25a0..624ce08b1 100644
--- a/trivy-reports/report-mimir_rollout-operator_v0.19.1.md
+++ b/trivy-reports/report-mimir_rollout-operator_v0.21.0.md
@@ -1,9 +1,9 @@
-Target grafana/rollout-operator:v0.19.1 (debian 12.6)
+Target grafana/rollout-operator:v0.21.0 (debian 12.8)
No Vulnerabilities found
No Misconfigurations found
Target bin/rollout-operator
-Vulnerabilities (2)
+Vulnerabilities (1)
| Package |
@@ -16,15 +16,8 @@
golang.org/x/net |
CVE-2024-45338 |
HIGH |
- v0.26.0 |
+ v0.28.0 |
0.33.0 |
-
- stdlib |
- CVE-2024-34156 |
- HIGH |
- v1.23.0 |
- 1.22.7, 1.23.1 |
-
No Misconfigurations found
diff --git a/trivy-reports/report-velero_kubectl_1.32.md b/trivy-reports/report-velero_kubectl_1.32.md
new file mode 100644
index 000000000..9d3235829
--- /dev/null
+++ b/trivy-reports/report-velero_kubectl_1.32.md
@@ -0,0 +1,51 @@
+
+Target docker.io/bitnami/kubectl:1.32 (debian 12.9)
+No Vulnerabilities found
+No Misconfigurations found
+Target
+Vulnerabilities (1)
+
+
+ | Package |
+ ID |
+ Severity |
+ Installed Version |
+ Fixed Version |
+
+
+ golang.org/x/net |
+ CVE-2024-45338 |
+ HIGH |
+ v0.30.0 |
+ 0.33.0 |
+
+
+No Misconfigurations found
+Target opt/bitnami/common
+No Vulnerabilities found
+No Misconfigurations found
+Target opt/bitnami/common/bin/yq
+No Vulnerabilities found
+No Misconfigurations found
+Target opt/bitnami/kubectl
+No Vulnerabilities found
+No Misconfigurations found
+Target opt/bitnami/kubectl/bin/kubectl
+Vulnerabilities (1)
+
+
+ | Package |
+ ID |
+ Severity |
+ Installed Version |
+ Fixed Version |
+
+
+ golang.org/x/net |
+ CVE-2024-45338 |
+ HIGH |
+ v0.30.0 |
+ 0.33.0 |
+
+
+No Misconfigurations found