lerkolabs/uptop
1
1
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases 2 Wiki Activity

fix(security): patch Docker Scout CVEs and remove unused openssh-client #41

Merged
lerko merged 2 commits from fix/docker-scout-cves into main 2026-05-30 00:33:20 +00:00
Conversation 0 Commits 2 Files Changed 3
+4 -4

2 Commits

Author SHA1 Message Date
lerko aac8d4dd0e fix(security): remove unused openssh-client from Docker image
CI / test (pull_request) Successful in 2m25s
Details
CI / lint (pull_request) Successful in 40s
Details
CI / vulncheck (pull_request) Successful in 41s
Details 
openssh-client was never used — uptop uses pure Go SSH via
charmbracelet/ssh. Removing it eliminates CVE-2026-25680,
CVE-2026-35386, CVE-2026-35387, and CVE-2026-35388.
 2026-05-29 20:19:08 -04:00
lerko 13a0860dd3 fix(security): patch Docker Scout CVEs in x/net and Alpine packages
CI / test (pull_request) Successful in 2m26s
Details
CI / lint (pull_request) Successful in 51s
Details
CI / vulncheck (pull_request) Successful in 46s
Details 
Upgrade golang.org/x/net v0.54.0 → v0.55.0 (CVE-2026-41589 critical,
CVE-2025-60876, CVE-2026-42502, CVE-2026-42506, CVE-2026-25681,
CVE-2026-35414). Add apk upgrade to Dockerfile for openssh and busybox
CVEs (CVE-2026-25680, CVE-2026-27136, CVE-2026-35386, CVE-2026-35387,
CVE-2026-35388).
 2026-05-29 20:05:28 -04:00