From 6655aeb5f972a2cbcedb4581528664cd62c57585 Mon Sep 17 00:00:00 2001 From: Manohar Reddy Date: Tue, 14 Jul 2026 14:53:26 +0200 Subject: [PATCH 1/2] fix security scan: remove python3 libraries --- operator/Dockerfile.simplyblock-rebalancer | 1 + 1 file changed, 1 insertion(+) diff --git a/operator/Dockerfile.simplyblock-rebalancer b/operator/Dockerfile.simplyblock-rebalancer index 0536e90a..8bd9d5ea 100644 --- a/operator/Dockerfile.simplyblock-rebalancer +++ b/operator/Dockerfile.simplyblock-rebalancer @@ -58,6 +58,7 @@ RUN dnf update -y --nogpgcheck && \ fio \ nvme-cli \ sudo \ + && dnf remove -y python3-urllib3 python3-requests python3-idna --nogpgcheck \ && dnf clean all COPY --from=builder /workspace/simplyblock-rebalancer /usr/local/bin/simplyblock-rebalancer From 15044db526e6f8cafd9e01d71970c2f26ba8f972 Mon Sep 17 00:00:00 2001 From: Manohar Reddy Date: Tue, 14 Jul 2026 14:58:17 +0200 Subject: [PATCH 2/2] update slack message --- .github/workflows/csi_security.yaml | 3 ++- .github/workflows/operator_security.yaml | 3 ++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/.github/workflows/csi_security.yaml b/.github/workflows/csi_security.yaml index 5197b9e3..7943bbdb 100644 --- a/.github/workflows/csi_security.yaml +++ b/.github/workflows/csi_security.yaml @@ -95,11 +95,12 @@ jobs: webhook-type: incoming-webhook payload: | { - "text": ":rotating_light: *Security scan failed* — vulnerabilities found in `${{ github.repository }}`", + "text": ":rotating_light: *Security scan failed* — vulnerabilities found in `${{ env.IMAGE_NAME }}`", "attachments": [ { "color": "danger", "fields": [ + { "title": "Image", "value": "${{ env.IMAGE_NAME }}", "short": true }, { "title": "Branch", "value": "${{ github.ref_name }}", "short": true }, { "title": "Commit", "value": "${{ github.sha }}", "short": true }, { "title": "Workflow", "value": "<${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}|View run>", "short": false } diff --git a/.github/workflows/operator_security.yaml b/.github/workflows/operator_security.yaml index e947ee6d..59e86f60 100644 --- a/.github/workflows/operator_security.yaml +++ b/.github/workflows/operator_security.yaml @@ -87,11 +87,12 @@ jobs: webhook-type: incoming-webhook payload: | { - "text": ":rotating_light: *Security scan failed* — vulnerabilities found in `${{ github.repository }}`", + "text": ":rotating_light: *Security scan failed* — vulnerabilities found in `${{ matrix.image }}`", "attachments": [ { "color": "danger", "fields": [ + { "title": "Image", "value": "${{ matrix.image }}", "short": true }, { "title": "Branch", "value": "${{ github.ref_name }}", "short": true }, { "title": "Commit", "value": "${{ github.sha }}", "short": true }, { "title": "Workflow", "value": "<${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}|View run>", "short": false }