Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Helm release mysql (helm/defectdojo/Chart.yaml) #10501

Closed
wants to merge 1 commit into from
Closed

Update Helm release mysql (helm/defectdojo/Chart.yaml) #10501

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 2, 2024

Mend Renovate

This PR contains the following updates:

Package Update Change
mysql (source) minor ~9.19.0 -> ~9.23.0
mysql major 5.7.44 -> 9.0.0

Release Notes

bitnami/charts (mysql)

v9.23.0

  • [bitnami/mysql] feat: ✨ 🔒 Add automatic adaptation for Openshift restricted-v2 SCC (#​2 (51beaf0), closes #​24128

v9.22.0

v9.21.2

v9.21.1

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Jul 2, 2024
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Jul 2, 2024
edited
Loading

Hi there 👋, @DryRunSecurity here, below is a summary of our analysis and findings.

DryRun Security Status Findings
Configured Codepaths Analyzer 0 findings
IDOR Analyzer 0 findings
Sensitive Files Analyzer 0 findings
Server-Side Request Forgery Analyzer 0 findings
SQL Injection Analyzer 0 findings
Authn/Authz Analyzer 0 findings
Secrets Analyzer 0 findings

Note

🟢 Risk threshold not exceeded.

Change Summary (click to expand)

The following is a summary of changes in this pull request made by me, your security buddy 🤖. Note that this summary is auto-generated and not meant to be a definitive list of security issues but rather a helpful summary from a security perspective.

Summary:

The changes in this pull request primarily focus on updating the dependencies and versions of various components used in the DefectDojo application's Helm chart and Docker Compose setup. These updates include upgrading the MySQL and PostgreSQL dependencies to newer versions, as well as ensuring the integrity of the MySQL Docker image through an updated SHA256 digest.

From an application security perspective, these changes do not appear to introduce any immediate security concerns. Updating dependencies to the latest stable versions is generally a recommended practice, as it can help address known vulnerabilities and improve overall application security and stability. However, it's crucial to review the release notes and change logs for the new dependency versions to understand if there are any security-related fixes or improvements included.

Additionally, it's important to thoroughly test the application with the updated dependencies to ensure compatibility and that no regressions or unexpected behavior are introduced. This is especially important for the MySQL version upgrade, as it represents a significant change that may require adjustments in the application code or configuration.

Files Changed:

  1. helm/defectdojo/Chart.lock: This file has been updated to reflect the changes in the Helm chart dependencies. The MySQL dependency version has been updated from 9.19.1 to 9.23.0, and the PostgreSQL dependency version has been updated from 15.5.11 to 15.5.12. The digest value and the "generated" timestamp have also been updated accordingly.

  2. helm/defectdojo/Chart.yaml: This file has been updated to change the MySQL dependency version from ~9.19.0 to ~9.23.0. This is a routine update to a dependency version, which is generally a recommended practice to address potential security vulnerabilities and improve stability.

  3. docker-compose.yml: The code change in this file updates the MySQL image version from 5.7.44 to 9.0.0. This is a significant version upgrade that should be carefully reviewed to understand the potential security improvements and any compatibility issues that may arise.

Powered by DryRun Security

@mtesauro
Copy link
Contributor

mtesauro commented Jul 2, 2024

MySQL was deprecated in 2.36.0

@mtesauro mtesauro closed this Jul 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file docker helm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@mtesauro