Trivy: unresolved container vulnerabilities after rebuild

## Summary

The daily Trivy periodic scan found Critical/High vulnerabilities in the latest published Docker image.
An automated rebuild was attempted but the rebuilt image **still has vulnerabilities**,
indicating the fix requires a manual dependency update rather than a base image refresh.

## Next steps

- Review findings in the [Security tab](https://github.com/Sage-Bionetworks/synapsePythonClient/security/code-scanning)
- Update the affected dependencies to a version that includes the fix
- Or add the CVE ID(s) to a `.trivyignore` file if the risk is accepted

## Details

- **Workflow run:** https://github.com/Sage-Bionetworks/synapsePythonClient/actions/runs/24257613164
- **Triggered at:** 2026-04-10T18:23:58.506Z

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Trivy: unresolved container vulnerabilities after rebuild #1356

Summary

Next steps

Details

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Trivy: unresolved container vulnerabilities after rebuild #1356

Description

Summary

Next steps

Details

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions