Skip to content

Critical CVEs in Docker Images #12461

New issue
New issue
Closed
apache/apisix-helm-chart
#852
Closed
Critical CVEs in Docker Images#12461
apache/apisix-helm-chart
#852
@githubcdr

Description

@githubcdr
githubcdr
opened on Jul 24, 2025

Current Behavior

Hi, we noticed a lot of critical CVE's in the dashboard;

grype apache/apisix-dashboard:3.0.1-alpine
 ✔ Parsed image                                                    sha256:b1ed1e4c98cbe6c98511752a6ac843163a21167804e3830230f7b47c226a40d7
 ✔ Cataloged contents                                                     df25f0b1376120442c15c9861f5bca4014193cf14e17e25a21f9787ac988ab40
   ├── ✔ Packages                        [90 packages]
   ├── ✔ Executables                     [18 executables]
   ├── ✔ File digests                    [80 files]
   └── ✔ File metadata                   [80 locations]
 ✔ Scanned for vulnerabilities     [109 vulnerability matches]
   ├── by severity: 13 critical, 26 high, 64 medium, 6 low, 0 negligible

Expected Behavior

A safe dashboard

Error Logs

No response

Steps to Reproduce

Lateste helm provisioned apisix dashboard

Environment

  • APISIX version 3.0.1

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    ⚡️ Apache APISIX Roadmap

    Status

    ✅ Done

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions