Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: added ollama-nonroot image #234

Merged
merged 1 commit into from
Feb 18, 2025
Merged

feat: added ollama-nonroot image #234

merged 1 commit into from
Feb 18, 2025

Conversation

chgl
Copy link
Contributor

@chgl chgl commented Feb 18, 2025

No description provided.

@github-actions GitHub Actions
Copy link

🦙 MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 6 0 0.1s
✅ DOCKERFILE hadolint 10 0 0.79s
✅ EDITORCONFIG editorconfig-checker 58 0 0.13s
✅ JSON jsonlint 6 0 0.16s
✅ JSON prettier 6 0 0.73s
✅ JSON v8r 6 0 12.5s
⚠️ MARKDOWN markdownlint 11 6 0.6s
✅ PYTHON bandit 1 0 1.98s
✅ PYTHON black 1 0 0.75s
✅ PYTHON flake8 1 0 0.37s
✅ PYTHON isort 1 0 0.31s
✅ PYTHON mypy 1 0 2.68s
✅ PYTHON ruff 1 0 0.01s
✅ REPOSITORY checkov yes no 15.55s
✅ REPOSITORY gitleaks yes no 0.12s
✅ REPOSITORY git_diff yes no 0.02s
✅ REPOSITORY kics yes no 3.5s
✅ REPOSITORY secretlint yes no 0.87s
✅ REPOSITORY syft yes no 1.96s
⚠️ REPOSITORY trivy yes 1 7.71s
✅ REPOSITORY trivy-sbom yes no 0.24s
✅ REPOSITORY trufflehog yes no 12.41s
✅ YAML prettier 9 0 0.42s
✅ YAML v8r 9 0 7.77s
✅ YAML yamllint 9 0 0.29s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

MegaLinter is graciously provided by OX Security

@github-actions GitHub Actions
Copy link

Trivy image scan report

ghcr.io/miracum/util-images/ollama-nonroot:pr-234 (ubuntu 20.04)

2 known vulnerabilities found (MEDIUM: 2 LOW: 0 CRITICAL: 0 HIGH: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
libc-bin CVE-2025-0395 MEDIUM 2.31-0ubuntu9.16 2.31-0ubuntu9.17
libc6 CVE-2025-0395 MEDIUM 2.31-0ubuntu9.16 2.31-0ubuntu9.17

No Misconfigurations found

usr/bin/ollama

4 known vulnerabilities found (CRITICAL: 0 HIGH: 1 MEDIUM: 3 LOW: 0)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
golang.org/x/net CVE-2024-45338 HIGH v0.25.0 0.33.0
stdlib CVE-2024-45336 MEDIUM 1.23.4 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2024-45341 MEDIUM 1.23.4 1.22.11, 1.23.5, 1.24.0-rc.2
stdlib CVE-2025-22866 MEDIUM 1.23.4 1.22.12, 1.23.6, 1.24.0-rc.3

No Misconfigurations found

@chgl chgl merged commit 1d6e804 into master Feb 18, 2025
12 checks passed
@chgl chgl deleted the added-ollama-nonroot branch February 18, 2025 11:40
@miracum-bot miracum-bot mentioned this pull request Feb 18, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@chgl