Skip to content

to be continuous

DOTNET_SEMGREP_IMAGE

to-be-continuous/doc

docker.io/semgrep/semgrep:latest (alpine 3.23.4)¶

Trivy Image Scan

Image: docker.io/semgrep/semgrep:latest (alpine 3.23.4)
Scan date: 2026-06-21

docker.io/semgrep/semgrep:latest (alpine 3.23.4) (alpine)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
libexpat	CVE-2026-45186	HIGH	2.7.5-r0	2.8.1-r0	http://www.openwall.com/lists/oss-security/2026/05/11/16 https://access.redhat.com/errata/RHSA-2026:23230 https://access.redhat.com/security/cve/CVE-2026-45186 https://bugzilla.redhat.com/2468575 https://bugzilla.redhat.com/show_bug.cgi?id=2468575 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45186 https://errata.almalinux.org/9/ALSA-2026-23230.html https://errata.rockylinux.org/RLSA-2026:23230 https://github.com/libexpat/libexpat/pull/1216 https://linux.oracle.com/cve/CVE-2026-45186.html https://linux.oracle.com/errata/ELSA-2026-22721.html https://nvd.nist.gov/vuln/detail/CVE-2026-45186 https://www.cve.org/CVERecord?id=CVE-2026-45186
libexpat	CVE-2026-41080	LOW	2.7.5-r0	2.8.1-r0	http://www.openwall.com/lists/oss-security/2026/04/26/1 https://access.redhat.com/security/cve/CVE-2026-41080 https://blog.hartwork.org/posts/expat-2-8-0-released/ https://github.com/libexpat/libexpat/issues/47 https://github.com/libexpat/libexpat/pull/1183 https://nvd.nist.gov/vuln/detail/CVE-2026-41080 https://www.cve.org/CVERecord?id=CVE-2026-41080 https://www.openwall.com/lists/oss-security/2026/04/26/1
No Misconfigurations found

Python (python-pkg)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
check-jsonschema	CVE-2024-53848	MEDIUM	0.28.4	0.30.0	https://access.redhat.com/security/cve/CVE-2024-53848 https://github.com/python-jsonschema/check-jsonschema https://github.com/python-jsonschema/check-jsonschema/commit/c52714b85e6725b1b24516fbdedacb333b939152 https://github.com/python-jsonschema/check-jsonschema/security/advisories/GHSA-q6mv-284r-mp36 https://nvd.nist.gov/vuln/detail/CVE-2024-53848 https://www.cve.org/CVERecord?id=CVE-2024-53848
idna	CVE-2026-45409	MEDIUM	3.11	3.15	https://github.com/kjd/idna https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx https://nvd.nist.gov/vuln/detail/CVE-2026-45409
jaraco.context	CVE-2026-23949	HIGH	5.3.0	6.1.0	https://access.redhat.com/security/cve/CVE-2026-23949 https://github.com/jaraco/jaraco.context https://github.com/jaraco/jaraco.context/blob/main/jaraco/context/__init__.py#L74-L91 https://github.com/jaraco/jaraco.context/commit/7b26a42b525735e4085d2e994e13802ea339d5f9 https://github.com/jaraco/jaraco.context/security/advisories/GHSA-58pv-8j8x-9vj2 https://github.com/pypa/setuptools/blob/main/setuptools/_vendor/jaraco/context.py#L55-L76 https://nvd.nist.gov/vuln/detail/CVE-2026-23949 https://ubuntu.com/security/notices/USN-7979-1 https://www.cve.org/CVERecord?id=CVE-2026-23949
pip	CVE-2025-8869	MEDIUM	25.1.1	25.3	https://access.redhat.com/security/cve/CVE-2025-8869 https://github.com/pypa/pip https://github.com/pypa/pip/commit/f2b92314da012b9fffa36b3f3e67748a37ef464a https://github.com/pypa/pip/pull/13550 https://lists.debian.org/debian-lts-announce/2025/10/msg00028.html https://mail.python.org/archives/list/security-announce@python.org/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN https://mail.python.org/archives/list/security-announce@python.org/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN/ https://nvd.nist.gov/vuln/detail/CVE-2025-8869 https://pip.pypa.io/en/stable/news/#v25-2 https://www.cve.org/CVERecord?id=CVE-2025-8869
pip	CVE-2026-3219	MEDIUM	25.1.1	26.1	http://www.openwall.com/lists/oss-security/2026/04/20/8 https://access.redhat.com/security/cve/CVE-2026-3219 https://github.com/pypa/pip https://github.com/pypa/pip/issues/13867 https://github.com/pypa/pip/pull/13870 https://mail.python.org/archives/list/security-announce@python.org/thread/QAJ5JIVWWCAJ4EZL2FP5MOOW35JS7LRJ https://mail.python.org/archives/list/security-announce@python.org/thread/QAJ5JIVWWCAJ4EZL2FP5MOOW35JS7LRJ/ https://nvd.nist.gov/vuln/detail/CVE-2026-3219 https://www.cve.org/CVERecord?id=CVE-2026-3219
pip	CVE-2026-6357	MEDIUM	25.1.1	26.1	http://www.openwall.com/lists/oss-security/2026/04/27/7 https://access.redhat.com/security/cve/CVE-2026-6357 https://github.com/pypa/pip https://github.com/pypa/pip/commit/b369bfc96cc524e00c267e1693290e6599c36bad https://github.com/pypa/pip/pull/13923 https://ichard26.github.io/blog/2026/04/whats-new-in-pip-26.1/#security-fixes https://nvd.nist.gov/vuln/detail/CVE-2026-6357 https://www.cve.org/CVERecord?id=CVE-2026-6357
pip	CVE-2026-1703	LOW	25.1.1	26.0	https://access.redhat.com/security/cve/CVE-2026-1703 https://github.com/pypa/pip https://github.com/pypa/pip/commit/8e227a9be4faa9594e05d02ca05a413a2a4e7735 https://github.com/pypa/pip/pull/13777 https://mail.python.org/archives/list/security-announce@python.org/thread/WIEA34D4TABF2UNQJAOMXKCICSPBE2DJ https://mail.python.org/archives/list/security-announce@python.org/thread/WIEA34D4TABF2UNQJAOMXKCICSPBE2DJ/ https://nvd.nist.gov/vuln/detail/CVE-2026-1703 https://www.cve.org/CVERecord?id=CVE-2026-1703
pydantic-settings	GHSA-4xgf-cpjx-pc3j	MEDIUM	2.14.1	2.14.2	https://github.com/pydantic/pydantic-settings https://github.com/pydantic/pydantic-settings/security/advisories/GHSA-4xgf-cpjx-pc3j
starlette	CVE-2026-54283	HIGH	1.3.0	1.3.1	https://github.com/Kludex/starlette https://github.com/Kludex/starlette/security/advisories/GHSA-82w8-qh3p-5jfq
urllib3	CVE-2026-44431	HIGH	2.6.3	2.7.0	https://access.redhat.com/security/cve/CVE-2026-44431 https://github.com/urllib3/urllib3 https://github.com/urllib3/urllib3/security/advisories/GHSA-qccp-gfcp-xxvc https://nvd.nist.gov/vuln/detail/CVE-2026-44431 https://ubuntu.com/security/notices/USN-8379-1 https://www.cve.org/CVERecord?id=CVE-2026-44431
urllib3	CVE-2026-44432	HIGH	2.6.3	2.7.0	https://access.redhat.com/security/cve/CVE-2026-44432 https://github.com/pypa/advisory-database/tree/main/vulns/urllib3/PYSEC-2026-142.yaml https://github.com/urllib3/urllib3 https://github.com/urllib3/urllib3/security/advisories/GHSA-mf9v-mfxr-j63j https://nvd.nist.gov/vuln/detail/CVE-2026-44432 https://ubuntu.com/security/notices/USN-8379-1 https://www.cve.org/CVERecord?id=CVE-2026-44432
wheel	CVE-2026-24049	HIGH	0.45.1	0.46.2	https://access.redhat.com/errata/RHSA-2026:1939 https://access.redhat.com/security/cve/CVE-2026-24049 https://bugzilla.redhat.com/2431959 https://bugzilla.redhat.com/show_bug.cgi?id=2431959 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24049 https://errata.almalinux.org/9/ALSA-2026-1939.html https://errata.rockylinux.org/RLSA-2026:1939 https://github.com/pypa/wheel https://github.com/pypa/wheel/commit/7a7d2de96b22a9adf9208afcc9547e1001569fef https://github.com/pypa/wheel/commit/934fe177ff912c8e03d5ae951d3805e1fd90ba5e https://github.com/pypa/wheel/releases/tag/0.46.2 https://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fx https://linux.oracle.com/cve/CVE-2026-24049.html https://linux.oracle.com/errata/ELSA-2026-2090.html https://nvd.nist.gov/vuln/detail/CVE-2026-24049 https://ubuntu.com/security/notices/USN-8221-1 https://www.cve.org/CVERecord?id=CVE-2026-24049
No Misconfigurations found