From ef4ffd21f7c36a762c1d0ee6b72989c3d06583bd Mon Sep 17 00:00:00 2001 From: Jacob Woffenden Date: Mon, 23 Sep 2024 13:43:57 +0100 Subject: [PATCH] Update base image Update VS Code Add CVE ignore --- .trivyignore | 1 + Dockerfile | 4 ++-- test/container-structure-test.yml | 2 +- 3 files changed, 4 insertions(+), 3 deletions(-) diff --git a/.trivyignore b/.trivyignore index dd3e567..c88e931 100644 --- a/.trivyignore +++ b/.trivyignore @@ -14,3 +14,4 @@ CVE-2024-0057 # Go ## aws-sso CVE-2024-41110 # Vulnerability in github.com/docker/docker, but we don't run Docker on CDE +CVE-2024-34156 diff --git a/Dockerfile b/Dockerfile index 99a8e76..c1b8281 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM ghcr.io/ministryofjustice/analytical-platform-cloud-development-environment-base@sha256:c5b1ca761b4a9db72506ed23831c525df52e5398177c041638d8f0b80c47356e +FROM ghcr.io/ministryofjustice/analytical-platform-cloud-development-environment-base@sha256:cd9fdb57437707322896c33655c02e6ae10e114615b206713c899281cdb71153 LABEL org.opencontainers.image.vendor="Ministry of Justice" \ org.opencontainers.image.authors="Analytical Platform (analytical-platform@digital.justice.gov.uk)" \ @@ -6,7 +6,7 @@ LABEL org.opencontainers.image.vendor="Ministry of Justice" \ org.opencontainers.image.description="Visual Studio Code image for Analytical Platform" \ org.opencontainers.image.url="https://github.com/ministryofjustice/analytical-platform-visual-studio-code" -ENV VISUAL_STUDIO_CODE_VERSION="1.92.1-1723066302" +ENV VISUAL_STUDIO_CODE_VERSION="1.93.1-1726079302" SHELL ["/bin/bash", "-e", "-u", "-o", "pipefail", "-c"] diff --git a/test/container-structure-test.yml b/test/container-structure-test.yml index 7920e6c..1eff994 100644 --- a/test/container-structure-test.yml +++ b/test/container-structure-test.yml @@ -8,7 +8,7 @@ commandTests: - name: "code" command: "code" args: ["--version"] - expectedOutput: ["1.92.1"] + expectedOutput: ["1.93.1"] fileExistenceTests: - name: "/opt/analytical-platform/first-run-notice.txt"