Skip to content

Add CVE scanning to the release-docker-images.yml workflow #3198

New issue
New issue
Closed
#3200
#3199
Closed
Add CVE scanning to the release-docker-images.yml workflow#3198
#3200
#3199
Assignees
JohnHalleyGotway
Labels
component: CI/CDContinuous integration and deployment issuescomponent: repository maintenanceRepository maintenance issuepriority: mediumMedium Priorityreporting: DTC AF METplusAir Force METplus Projectrequestor: USAFUnited States Air Forcetype: enhancementImprove something that it is currently doing
Milestone
MET-12.0.3 (bugfix)
@JohnHalleyGotway

Description

@JohnHalleyGotway
JohnHalleyGotway
opened on Jul 14, 2025

Describe the Enhancement

For dtcenter/METbaseimage#32, a release-docker-images.yml workflow was added to the METbaseimage repository and it was enhanced to include scanning of Docker images for CVEs. While the release-docker-images.yml workflow was also add to the MET repository, it should be enhanced to included direct CVE scanning. This issue is to port the CVE scanning logic over from METbaseimage to MET for the main_v12.0, main_v12.1, and develop branches.

Time Estimate

4 hours

Sub-Issues

Consider breaking the enhancement down into sub-issues.
None needed

Relevant Deadlines

List relevant project deadlines here or state NONE.

Funding Source

PRJ013851 AF METPLUS 2771025

Define the Metadata

Assignee

  • Select engineer(s) or no engineer required
  • Select scientist(s) or no scientist required

Labels

  • Review default alert labels
  • Select component(s)
  • Select priority
  • Select requestor(s)

Milestone and Projects

  • Select Milestone as a MET-X.Y.Z version, Consider for Next Release, or Backlog of Development Ideas
  • For a MET-X.Y.Z version, select the MET-X.Y Development project

Define Related Issue(s)

Consider the impact to the other METplus components.

Enhancement Checklist

See the METplus Workflow for details.

  • Complete the issue definition above, including the Time Estimate and Funding Source.
  • Fork this repository or create a branch of develop.
    Branch name: feature_<Issue Number>_<Description>
  • Complete the development and test your changes.
  • Add/update log messages for easier debugging.
  • Add/update unit tests.
  • Add/update documentation.
  • Push local changes to GitHub.
  • Submit a pull request to merge into develop.
    Pull request: feature <Issue Number> <Description>
  • Define the pull request metadata, as permissions allow.
    Select: Reviewer(s) and Development issue
    Select: Milestone as the next official version
    Select: MET-X.Y Development project for development toward the next coordinated release
  • Iterate until the reviewer(s) accept and merge your changes.
  • Delete your fork or branch.
  • Close this issue.

Metadata

Metadata

Assignees

Labels

component: CI/CDContinuous integration and deployment issuescomponent: repository maintenanceRepository maintenance issuepriority: mediumMedium Priorityreporting: DTC AF METplusAir Force METplus Projectrequestor: USAFUnited States Air Forcetype: enhancementImprove something that it is currently doing

Type

No type

Projects

Coordinated METplus-6.0 Support

Status

🏁 Done
METplus-6.2 Development

Status

🏁 Done

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions