starred/whoogle-search
1
0
Fork 0
mirror of https://github.com/benbusby/whoogle-search.git synced 2026-04-25 04:05:57 +03:00
Code Issues 9 Projects Releases Packages Wiki Activity

[GH-ISSUE #822] [BUG] Vulnerability scan is not working #517

New issue
Closed
opened 2026-02-25 20:35:56 +03:00 by kerem · 4 comments
kerem commented 2026-02-25 20:35:56 +03:00
Owner
Copy link

Originally created by @ngosang on GitHub (Jul 28, 2022).
Original GitHub issue: https://github.com/benbusby/whoogle-search/issues/822

The GitHub actions are successful.. => https://github.com/benbusby/whoogle-search/actions

But, if I run grype in my server I see that:

Docker image: benbusby/whoogle-search:0.7.4
curl                   7.80.0-r1         7.80.0-r2         apk   CVE-2022-27782  High      
curl                   7.80.0-r1         7.80.0-r2         apk   CVE-2022-27781  High      
curl                   7.80.0-r1         7.80.0-r2         apk   CVE-2022-32207  Critical  
curl                   7.80.0-r1         7.80.0-r2         apk   CVE-2022-27780  High      
libcrypto1.1           1.1.1o-r0         1.1.1q-r0         apk   CVE-2022-2097   High      
libcurl                7.80.0-r1         7.80.0-r2         apk   CVE-2022-27781  High      
libcurl                7.80.0-r1         7.80.0-r2         apk   CVE-2022-27782  High      
libcurl                7.80.0-r1         7.80.0-r2         apk   CVE-2022-27780  High      
libcurl                7.80.0-r1         7.80.0-r2         apk   CVE-2022-32207  Critical  
libssl1.1              1.1.1o-r0         1.1.1q-r0         apk   CVE-2022-2097   High      
ncurses-libs           6.3_p20211120-r0  6.3_p20211120-r1  apk   CVE-2022-29458  High      
ncurses-terminfo-base  6.3_p20211120-r0  6.3_p20211120-r1  apk   CVE-2022-29458  High
Originally created by @ngosang on GitHub (Jul 28, 2022). Original GitHub issue: https://github.com/benbusby/whoogle-search/issues/822 The GitHub actions are successful.. => https://github.com/benbusby/whoogle-search/actions But, if I run grype in my server I see that: ``` Docker image: benbusby/whoogle-search:0.7.4 curl 7.80.0-r1 7.80.0-r2 apk CVE-2022-27782 High curl 7.80.0-r1 7.80.0-r2 apk CVE-2022-27781 High curl 7.80.0-r1 7.80.0-r2 apk CVE-2022-32207 Critical curl 7.80.0-r1 7.80.0-r2 apk CVE-2022-27780 High libcrypto1.1 1.1.1o-r0 1.1.1q-r0 apk CVE-2022-2097 High libcurl 7.80.0-r1 7.80.0-r2 apk CVE-2022-27781 High libcurl 7.80.0-r1 7.80.0-r2 apk CVE-2022-27782 High libcurl 7.80.0-r1 7.80.0-r2 apk CVE-2022-27780 High libcurl 7.80.0-r1 7.80.0-r2 apk CVE-2022-32207 Critical libssl1.1 1.1.1o-r0 1.1.1q-r0 apk CVE-2022-2097 High ncurses-libs 6.3_p20211120-r0 6.3_p20211120-r1 apk CVE-2022-29458 High ncurses-terminfo-base 6.3_p20211120-r0 6.3_p20211120-r1 apk CVE-2022-29458 High ```
kerem 2026-02-25 20:35:56 +03:00
  • closed this issue
  • added the
    bug
    Stale
         labels
kerem commented 2026-02-25 20:35:56 +03:00
Author
Owner
Copy link

@benbusby commented on GitHub (Aug 1, 2022):

Are you running that with --only-fixed?

<!-- gh-comment-id:1201373848 --> @benbusby commented on GitHub (Aug 1, 2022): Are you running that with `--only-fixed`?
kerem commented 2026-02-25 20:35:56 +03:00
Author
Owner
Copy link

@ngosang commented on GitHub (Aug 1, 2022):

Yes

<!-- gh-comment-id:1201395389 --> @ngosang commented on GitHub (Aug 1, 2022): Yes
kerem commented 2026-02-25 20:35:56 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Sep 15, 2025):

This issue has been automatically marked as stale due to inactivity. If it is still valid please comment within 7 days or it will be auto-closed.

<!-- gh-comment-id:3292230271 --> @github-actions[bot] commented on GitHub (Sep 15, 2025): This issue has been automatically marked as stale due to inactivity. If it is still valid please comment within 7 days or it will be auto-closed.
kerem commented 2026-02-25 20:35:56 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Sep 23, 2025):

Closing this issue due to prolonged inactivity.

<!-- gh-comment-id:3323438969 --> @github-actions[bot] commented on GitHub (Sep 23, 2025): Closing this issue due to prolonged inactivity.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
dependabot/pip/python-dotenv-1.2.2
v1.2.4
v1.2.3
v1.2.2
v1.2.1-test
v1.1.2
v1.1.1-beta
v1.1.0
v1.1.0-beta
v1.0.0-beta
v0.9.4
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.4
v0.8.3
v0.8.2
v0.8.1
v0.8.0
v0.7.4
v0.7.3
v0.7.2
v0.7.1
v0.7.0
v0.6.0
v0.5.4
v0.5.3
v0.5.2
v0.5.1
v0.5.0
v0.4.1
v0.4.0
v0.3.2
v0.3.1
v0.3.0
v0.2.1
0.2.0
v0.1.4
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.1
Labels
Clear labels   
Fixed (Pending PR Merge)

   
Stale

   
bug

   
enhancement

   
enhancement

   
good first issue

   
help wanted

   
keep-open

   
needs more info

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
theme

   
unfortunate
No labels
Fixed (Pending PR Merge)
Stale
bug
enhancement
enhancement
good first issue
help wanted
keep-open
needs more info
pull-request
question
theme
unfortunate
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/whoogle-search#517
No description provided.