docker.io/semgrep/semgrep:latest (alpine 3.22.2)

Trivy Image Scan

• Image: docker.io/semgrep/semgrep:latest (alpine 3.22.2)
• Scan date: 2025-11-19

docker.io/semgrep/semgrep:latest (alpine 3.22.2) (alpine)

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
jq	CVE-2025-49014	MEDIUM	1.8.0-r0	1.8.1-r0	https://access.redhat.com/security/cve/CVE-2025-49014 https://github.com/jqlang/jq/commit/499c91bca9d4d027833bc62787d1bb075c03680e https://github.com/jqlang/jq/security/advisories/GHSA-rmjp-cr27-wpg2 https://nvd.nist.gov/vuln/detail/CVE-2025-49014 https://www.cve.org/CVERecord?id=CVE-2025-49014
No Misconfigurations found

Python (python-pkg)

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
check-jsonschema	CVE-2024-53848	MEDIUM	0.28.4	0.30.0	https://access.redhat.com/security/cve/CVE-2024-53848 https://github.com/python-jsonschema/check-jsonschema https://github.com/python-jsonschema/check-jsonschema/commit/c52714b85e6725b1b24516fbdedacb333b939152 https://github.com/python-jsonschema/check-jsonschema/security/advisories/GHSA-q6mv-284r-mp36 https://nvd.nist.gov/vuln/detail/CVE-2024-53848 https://www.cve.org/CVERecord?id=CVE-2024-53848
pip	CVE-2025-8869	MEDIUM	25.1.1	25.3	https://access.redhat.com/security/cve/CVE-2025-8869 https://github.com/pypa/pip https://github.com/pypa/pip/commit/f2b92314da012b9fffa36b3f3e67748a37ef464a https://github.com/pypa/pip/pull/13550 https://lists.debian.org/debian-lts-announce/2025/10/msg00028.html https://mail.python.org/archives/list/security-announce@python.org/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN https://mail.python.org/archives/list/security-announce@python.org/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN/ https://nvd.nist.gov/vuln/detail/CVE-2025-8869 https://pip.pypa.io/en/stable/news/#v25-2 https://www.cve.org/CVERecord?id=CVE-2025-8869
No Misconfigurations found