Hi, I am trying out the docker version of the ELK stack, and have noted that when I scan it using trivy / "docker scan", it is showing some OS related vulnerabilities for libraries such curl etc. Can I understand if these findings are accurate and if anyone is able to advise on this?
Thank you for any advice on this matter!
This would be from docker.elastic.co/elasticsearch/elasticsearch:latest
The CVEs are mainly related to the centos side of the containers, will highlight some of them here:
I will take a look at the Swimlane ELK Docker as well, thank you for the info!
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.