Skip to content

docker.io/aquasec/tfsec-ci (alpine 3.21.3)

Trivy Image Scan

  • Image: docker.io/aquasec/tfsec-ci (alpine 3.21.3)
  • Scan date: 2025-06-30

docker.io/aquasec/tfsec-ci (alpine 3.21.3) (alpine)

No Vulnerabilities found
No Misconfigurations found

usr/bin/tfsec (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/cloudflare/circl GHSA-2x5j-vhc8-9cwm LOW v1.3.7 1.6.1 https://github.com/cloudflare/circl https://github.com/cloudflare/circl/security/advisories/GHSA-2x5j-vhc8-9cwm https://github.com/cloudflare/circl/tree/v1.6.1
github.com/open-policy-agent/opa CVE-2025-46569 HIGH v0.68.0 1.4.0 https://access.redhat.com/security/cve/CVE-2025-46569 https://github.com/open-policy-agent/opa https://github.com/open-policy-agent/opa/commit/ad2063247a14711882f18c387a511fc8094aa79c https://github.com/open-policy-agent/opa/security/advisories/GHSA-6m8w-jc87-6cr7 https://nvd.nist.gov/vuln/detail/CVE-2025-46569 https://pkg.go.dev/vuln/GO-2025-3660 https://www.cve.org/CVERecord?id=CVE-2025-46569
stdlib CVE-2025-22874 HIGH v1.24.1 1.24.4 https://access.redhat.com/security/cve/CVE-2025-22874 https://go.dev/cl/670375 https://go.dev/issue/73612 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://nvd.nist.gov/vuln/detail/CVE-2025-22874 https://pkg.go.dev/vuln/GO-2025-3749 https://www.cve.org/CVERecord?id=CVE-2025-22874
stdlib CVE-2025-0913 MEDIUM v1.24.1 1.23.10, 1.24.4 https://go.dev/cl/672396 https://go.dev/issue/73702 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://nvd.nist.gov/vuln/detail/CVE-2025-0913 https://pkg.go.dev/vuln/GO-2025-3750
stdlib CVE-2025-22871 MEDIUM v1.24.1 1.23.8, 1.24.2 http://www.openwall.com/lists/oss-security/2025/04/04/4 https://access.redhat.com/errata/RHSA-2025:9150 https://access.redhat.com/security/cve/CVE-2025-22871 https://bugzilla.redhat.com/2358493 https://errata.almalinux.org/9/ALSA-2025-9150.html https://go.dev/cl/652998 https://go.dev/issue/71988 https://groups.google.com/g/golang-announce/c/Y2uBTVKjBQk https://linux.oracle.com/cve/CVE-2025-22871.html https://linux.oracle.com/errata/ELSA-2025-9845.html https://nvd.nist.gov/vuln/detail/CVE-2025-22871 https://pkg.go.dev/vuln/GO-2025-3563 https://www.cve.org/CVERecord?id=CVE-2025-22871
stdlib CVE-2025-4673 MEDIUM v1.24.1 1.23.10, 1.24.4 https://access.redhat.com/security/cve/CVE-2025-4673 https://go.dev/cl/679257 https://go.dev/issue/73816 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://nvd.nist.gov/vuln/detail/CVE-2025-4673 https://pkg.go.dev/vuln/GO-2025-3751 https://ubuntu.com/security/notices/USN-7574-1 https://www.cve.org/CVERecord?id=CVE-2025-4673
No Misconfigurations found