ci update

[yajith]

starndardizing ci

[github-actions]

🔍 Vulnerabilities of portainerci/kubectl-shell:pr21

📦 Image Reference portainerci/kubectl-shell:pr21

digest	sha256:50aa36eb9f98f012a4f48affee83e2849a0738c08c64b1e8efaaf9bfd1313189
vulnerabilities
size	42 MB
packages	214

📦 Base Image alpine:3

also known as	3.20 3.20.3 latest
digest	sha256:33735bd63cf84d7e388d9f6d297d348c523c044410f553bd878c6d7829612735
vulnerabilities

stdlib 1.22.6 (golang) pkg:golang/[email protected] # Dockerfile (16:19) RUN curl -L https://get.helm.sh/helm-${HELM_VERSION}-linux-${TARGETARCH}.tar.gz | tar xvzf - && \ mv ./linux-${TARGETARCH}/helm . && \ chmod +x ./helm && \ mv ./helm /usr/local/bin/helm Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

stdlib 1.22.5 (golang) pkg:golang/[email protected] # Dockerfile (10:13) RUN curl -LO https://storage.googleapis.com/kubernetes-release/release/${KUBECTL_VERSION}/bin/linux/${TARGETARCH}/kubectl && \ chmod +x ./kubectl && \ mv ./kubectl /usr/local/bin/kubectl && \ echo -e 'source /usr/share/bash-completion/bash_completion\nsource <(kubectl completion bash)' >>~/.bashrc Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.04% EPSS Percentile 16th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. Affected range <1.22.7 Fixed version 1.22.7 EPSS Score 0.19% EPSS Percentile 56th percentile Description Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

[stevensbkang]

LGTM!