More banners, because everyone loves banners, right?
Maintenance break on Thursday at 15:00 (with possibility to move maintenance to Friday at 15:00 if registry data migration takes longer than anticipated). Downtime should be "short".
ADDENDUM: We will also be implementing the deletion of dormant projects - if your project is dormant for more than 12 months, you will get an email reminder. If there is no action, the project will be deleted after another 6 months (total of 18 months of inactivity)
Admin message
If your CI/CD process uses Trivy (tag:latest or v.0.69.4), please read this:
Trivy image has been compromised for around 3 hours between Thursday 19.3 and Friday 20.3. The InfoStealer scanned for CI/CD tokens, Kubernetes credentials, SSH-keys and basically everything you can get your hands on while on the CI/CD job.
There is also possibility of injecting malware into any images made through this process.
SO IF YOU ARE USING THE TRIVY IMAGE AS PART OF YOUR CI/CD, PLEASE MAKE SURE TO:
CHECK THE VERSION (LATEST OR VERSION 0.69.4)
IF USING THE VULNERABLE VERSION, CHANGE YOUR TOKENS / INFO USED IN THE PROCESS
REMAKE ANY IMAGES (IN THE CONTAINER REGISTRY, etc) WITH NON-VULNERABLE VERSIONS AND USE THEM
