You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
What happened:
When scanning a UBI-based image such as registry.access.redhat.com/ubi8/ubi:latest, the utility identifies 191 packages installed but 0 vulnerabilities.
What you expected to happen:
I expected that UBI would match the RedHat vulnerability information just as it does with CentOS images.
How to reproduce it (as minimally and precisely as possible): grype registry.access.redhat.com/ubi8/ubi:latest grype centos:latest
Anything else we need to know?:
RedHat UBI image uses the same packages as RedHat Enterprise Linux and thus CentOS. Likely the utility itself isn't aware of the similarity.
@jeason81 good catch. @luhring discovered that in some cases we are using both the major and minor distro version fo selecting the vulnerability source, where in some cases we should be using only the major version. In this case we were using a namespace of rhel:8.3 where it should have been rhel:8.
What happened:
When scanning a UBI-based image such as
registry.access.redhat.com/ubi8/ubi:latest
, the utility identifies 191 packages installed but 0 vulnerabilities.What you expected to happen:
I expected that UBI would match the RedHat vulnerability information just as it does with CentOS images.
How to reproduce it (as minimally and precisely as possible):
grype registry.access.redhat.com/ubi8/ubi:latest
grype centos:latest
Anything else we need to know?:
RedHat UBI image uses the same packages as RedHat Enterprise Linux and thus CentOS. Likely the utility itself isn't aware of the similarity.
Environment:
grype version
:cat /etc/os-release
or similar): MacOS 11 Big SurThe text was updated successfully, but these errors were encountered: