A recent vulnerability scan identified vulnerabilities in the cloudability-metrics-agent.yaml & deployment.yaml files. Below are the following vulnerabilities that were identified and fixed in this release:
cloudability-metrics-agent.yaml
Medium Severity Fixes:
- Container is running without privilege escalation control
- Container does not drop all default capabilities
- Container is running without root user control
Low Severity Fixes:
- Container is running without liveness probe
deployment.yaml (Applicable to customers who deploy with Helm)
Medium Severity Fixes:
- Container is running without privilege escalation control
- Container does not drop all default capabilities
- Container is running without root user control
Low Severity Fixes:
- Container is running without liveness probe
- Container could be running with outdated image
Customers can download and deploy our metrics agent using the regular provisioning workflow.