AWS Img. scan found a vulnerability in my (golang) container - how can I find which package is using the lib with vulnerability?

This page summarizes the projects mentioned and recommended in the original post on /r/golang
Docker Bazel

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • docker-alpine

    Official Alpine Linux Docker image. Win at minimalism! (by alpinelinux)

    • package: musl:1.2.2-r3vulnerability: CVE-2020-28928Wasn't able to find it with go mod graph nor with go mod why, checked Google and it seems like on of the layers of the docker has this valnerability:https://github.com/alpinelinux/docker-alpine/issues/123

  • distroless

    🥑 Language focused docker images, minus the operating system.

    • Unless you really need the ability to open a shell to your container, consider building it from scratch or from one of Google's distroless base layers.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts