Random change to test PR #31

dereknola · 2025-07-07T20:06:48Z

Proposed Changes

-Dumb PR to run trivy scan against

Types of Changes

Verification

Testing

Linked Issues

User-Facing Change

Further Comments

Signed-off-by: Derek Nola <derek.nola@suse.com>

github-actions · 2025-07-07T21:55:02Z


Report Summary

┌─────────────────────────────┬──────────┬─────────────────┬─────────┐
│           Target            │   Type   │ Vulnerabilities │ Secrets │
├─────────────────────────────┼──────────┼─────────────────┼─────────┤
│ bin/cni                     │ gobinary │        0        │    -    │
├─────────────────────────────┼──────────┼─────────────────┼─────────┤
│ bin/containerd-shim-runc-v2 │ gobinary │        0        │    -    │
├─────────────────────────────┼──────────┼─────────────────┼─────────┤
│ bin/k3s                     │ gobinary │        0        │    -    │
├─────────────────────────────┼──────────┼─────────────────┼─────────┤
│ bin/runc                    │ gobinary │        0        │    -    │
└─────────────────────────────┴──────────┴─────────────────┴─────────┘
Legend:
- '-': Not scanned
- '0': Clean (no security findings detected)


For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your project that you believe are not actually exploitable, consider issuing a VEX (Vulnerability Exploitability eXchange) statement.
VEX allows you to communicate the actual status of vulnerabilities in your project, improving security transparency and reducing false positives for your users.
Learn more and start using VEX: https://trivy.dev/v0.63/docs/supply-chain/vex/repo#publishing-vex-documents

To disable this notice, set the TRIVY_DISABLE_VEX_NOTICE environment variable.


bin/k3s (gobinary)
==================
Total: 0 (HIGH: 0, CRITICAL: 0)


Suppressed Vulnerabilities (Total: 1)
=====================================
┌─────────────────────────────┬────────────────┬──────────┬──────────────┬─────────────────────────────┬──────────────────────┐
│           Library           │ Vulnerability  │ Severity │    Status    │          Statement          │        Source        │
├─────────────────────────────┼────────────────┼──────────┼──────────────┼─────────────────────────────┼──────────────────────┤
│ github.com/pion/interceptor │ CVE-2025-49140 │ HIGH     │ not_affected │ vulnerable_code_not_present │ rancher.openvex.json │
└─────────────────────────────┴────────────────┴──────────┴──────────────┴─────────────────────────────┴──────────────────────┘

Signed-off-by: Derek Nola <derek.nola@suse.com>

dereknola added scan-with-trivy Triggers a Trivy Scan on PR and removed scan-with-trivy Triggers a Trivy Scan on PR labels Jul 7, 2025

dereknola force-pushed the master branch from a72c5c3 to c6726e2 Compare July 7, 2025 20:45

dereknola added scan-with-trivy Triggers a Trivy Scan on PR and removed scan-with-trivy Triggers a Trivy Scan on PR labels Jul 7, 2025

dereknola force-pushed the master branch from bdb457a to dd89224 Compare July 7, 2025 21:28

Move to more secure split trivy workflow based on labels, not comments

109f20d

Signed-off-by: Derek Nola <derek.nola@suse.com>

dereknola force-pushed the master branch from dd89224 to bf4f398 Compare July 7, 2025 21:42

dereknola force-pushed the fake_pr branch from 7230feb to ead075d Compare July 7, 2025 21:43

dereknola added scan-with-trivy Triggers a Trivy Scan on PR and removed scan-with-trivy Triggers a Trivy Scan on PR labels Jul 7, 2025

dereknola force-pushed the fake_pr branch from ead075d to 04efac7 Compare July 7, 2025 21:45

dereknola added scan-with-trivy Triggers a Trivy Scan on PR and removed scan-with-trivy Triggers a Trivy Scan on PR labels Jul 7, 2025

Add basic codeql workflow

f4fcb96

Signed-off-by: Derek Nola <derek.nola@suse.com>

dereknola force-pushed the master branch from bf4f398 to f4fcb96 Compare July 7, 2025 21:49

github-actions bot removed the scan-with-trivy Triggers a Trivy Scan on PR label Jul 7, 2025

xxx

e3ff2e3

Signed-off-by: Derek Nola <derek.nola@suse.com>

dereknola added the scan-with-trivy Triggers a Trivy Scan on PR label Jul 7, 2025

Random change to test PR

be7c874

Signed-off-by: Derek Nola <derek.nola@suse.com>

dereknola force-pushed the fake_pr branch from 04efac7 to be7c874 Compare July 7, 2025 22:01

dereknola removed the scan-with-trivy Triggers a Trivy Scan on PR label Jul 7, 2025

dereknola added the scan-with-trivy Triggers a Trivy Scan on PR label Jul 7, 2025

dereknola force-pushed the master branch from e3ff2e3 to 5fb351e Compare July 7, 2025 22:14

dereknola mentioned this pull request Jul 7, 2025

Move to more secure trivy workflow based on labels, not comments k3s-io/k3s#12592

Merged

dereknola force-pushed the master branch from 5fb351e to c3a4c8d Compare July 8, 2025 16:13

dereknola closed this Jul 8, 2025

dereknola deleted the fake_pr branch July 8, 2025 16:23

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Random change to test PR #31

Random change to test PR #31

Uh oh!

dereknola commented Jul 7, 2025

Uh oh!

github-actions bot commented Jul 7, 2025

Uh oh!

Uh oh!

Random change to test PR #31

Random change to test PR #31

Uh oh!

Conversation

dereknola commented Jul 7, 2025

Proposed Changes

Types of Changes

Verification

Testing

Linked Issues

User-Facing Change

Further Comments

Uh oh!

github-actions bot commented Jul 7, 2025

Uh oh!

Uh oh!