Bring your towel and join one of the fastest growing data communities. Welcome to our second-generation open source orchestration platform, a completely rethought approach to dataflow automation.

Prefect Community

Hi, I’m using the docker image `prefecthq/prefect:1.0.0`  and when scanning the docker image with Snyk I’m getting up to 114 security issues, as well as 8 critical vulnerabilities.

Are you guys planning on fixing them in the base docker image?

Hi <@U02KVA317PA>, I’ll need to check with the team on that

Updating some c++ libraries used in the image would probably do most of the job, but it would probably better if it’s done on your side than on mine

Historically, the vast majority of vulnerabilities are not actually applicable when audited by an engineer. We are not pinning our apt requirements and should be getting the latest with each release. We’re basing our image from the official Python image (<https://github.com/PrefectHQ/prefect/blob/master/Dockerfile>).