Skip to content

Commit b4ebc99

Browse files
anthony-nhsanthony-nhs
committed
new trivy
1 parent bbb74e2 commit b4ebc99

2 files changed

Lines changed: 42 additions & 0 deletions

File tree

Makefile

Lines changed: 37 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -21,6 +21,43 @@ install-node:
2121
install-hooks: install-python
2222
poetry run pre-commit install --install-hooks --overwrite
2323

24+
build-base-image:
25+
CONTAINER_NAME=base BASE_VERSION_TAG=local-build BASE_FOLDER=. IMAGE_TAG=local-build $(MAKE) build-image
26+
27+
build-node-24-image:
28+
CONTAINER_NAME=node_24 BASE_VERSION_TAG=local-build BASE_FOLDER=base_node IMAGE_TAG=local-build $(MAKE) build-image
29+
30+
build-node-24-python-3-10-image:
31+
CONTAINER_NAME=node_24_python_3_10 BASE_VERSION_TAG=local-build BASE_FOLDER=languages IMAGE_TAG=local-build $(MAKE) build-image
32+
33+
build-node-24-python-3-12-image:
34+
CONTAINER_NAME=node_24_python_3_12 BASE_VERSION_TAG=local-build BASE_FOLDER=languages IMAGE_TAG=local-build $(MAKE) build-image
35+
36+
build-node-24-python-3-13-image:
37+
CONTAINER_NAME=node_24_python_3_13 BASE_VERSION_TAG=local-build BASE_FOLDER=languages IMAGE_TAG=local-build $(MAKE) build-image
38+
39+
build-node-24-python-3-14-image:
40+
CONTAINER_NAME=node_24_python_3_14 BASE_VERSION_TAG=local-build BASE_FOLDER=languages IMAGE_TAG=local-build $(MAKE) build-image
41+
42+
build-eps-storage-terraform-image:
43+
CONTAINER_NAME=eps_storage_terraform BASE_VERSION_TAG=local-build BASE_FOLDER=projects IMAGE_TAG=local-build $(MAKE) build-image
44+
45+
build-fhir-facade-image:
46+
CONTAINER_NAME=fhir_facade_api BASE_VERSION_TAG=local-build BASE_FOLDER=projects IMAGE_TAG=local-build $(MAKE) build-image
47+
48+
build-node-24-python-3-14-golang-1-24-image:
49+
CONTAINER_NAME=node_24_python_3_14_golang_1_24 BASE_VERSION_TAG=local-build BASE_FOLDER=projects IMAGE_TAG=local-build $(MAKE) build-image
50+
51+
build-node-24-python-3-14-java-24-image:
52+
CONTAINER_NAME=node_24_python_3_14_java_24 BASE_VERSION_TAG=local-build BASE_FOLDER=projects IMAGE_TAG=local-build $(MAKE) build-image
53+
54+
build-regression-tests-image:
55+
CONTAINER_NAME=regression_tests BASE_VERSION_TAG=local-build BASE_FOLDER=projects IMAGE_TAG=local-build $(MAKE) build-image
56+
57+
build-all: build-base-image build-node-24-image build-node-24-python-3-10-image build-node-24-python-3-12-image build-node-24-python-3-13-image build-node-24-python-3-14-image \
58+
build-eps-storage-terraform-image build-fhir-facade-image build-node-24-python-3-14-golang-1-24-image build-node-24-python-3-14-java-24-image \
59+
build-regression-tests-image
60+
2461
build-image: guard-CONTAINER_NAME guard-BASE_VERSION_TAG guard-BASE_FOLDER guard-IMAGE_TAG
2562
npx devcontainer build \
2663
--workspace-folder ./src/$${BASE_FOLDER}/$${CONTAINER_NAME} \

src/common/.trivyignore.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -387,3 +387,8 @@ vulnerabilities:
387387
purls:
388388
- "pkg:golang/stdlib@v1.26.0"
389389
expired_at: 2026-09-11
390+
- id: CVE-2026-24051
391+
statement: "OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking"
392+
purls:
393+
- "pkg:golang/go.opentelemetry.io/otel/sdk@v1.38.0"
394+
expired_at: 2026-09-16

0 commit comments

Comments
 (0)