Skip to content

chore: update VS Code to v0.44.2#36

Open
sdf-actions-actor[bot] wants to merge 1 commit into
mainfrom
automated/update-vscode-8ff9a84
Open

chore: update VS Code to v0.44.2#36
sdf-actions-actor[bot] wants to merge 1 commit into
mainfrom
automated/update-vscode-8ff9a84

Conversation

@sdf-actions-actor

Copy link
Copy Markdown
Contributor

🔄 Automated VS Code Update

This PR updates the VS Code commit hash to the latest stable release.

Previous version: 0870c2a0c7c0564e7631bfed2675573a94ba4455
New version: 8ff9a84c4a9cd0b694aee8f374aa531f7a9d0d08
Release: v0.44.2

Changes

  • Updated VSCODE_COMMIT in Dockerfile

Verification

This PR will trigger the build workflow to ensure the container builds successfully with the new VS Code version.


This PR was created automatically by the Update VS Code Version workflow.

Update VSCODE_COMMIT from 0870c2a to 8ff9a84
@github-actions

Copy link
Copy Markdown

🔒 Trivy Security Scan Results

Status: ⚠️ Vulnerabilities found (see details in artifacts)
Vulnerabilities Found: 242 critical/high severity issues

⚠️ Action Required: Critical or high severity vulnerabilities detected.

Top 10 Critical/High Severity Vulnerabilities:

Type Package Vulnerability Severity Fixed Version
node-pkg axios CVE-2025-62718 CRITICAL 1.15.0, 0.31.0
node-pkg axios CVE-2026-40175 CRITICAL 1.15.0, 0.31.0
node-pkg axios CVE-2025-62718 CRITICAL 1.15.0, 0.31.0
node-pkg axios CVE-2026-40175 CRITICAL 1.15.0, 0.31.0
node-pkg axios CVE-2025-62718 CRITICAL 1.15.0, 0.31.0
node-pkg axios CVE-2026-40175 CRITICAL 1.15.0, 0.31.0
node-pkg handlebars CVE-2026-33937 CRITICAL 4.7.9
node-pkg minimist CVE-2021-44906 CRITICAL 1.2.6, 0.2.4
node-pkg sha.js CVE-2025-9288 CRITICAL 2.4.12
python-pkg Twisted CVE-2022-24801 CRITICAL 22.4.0

... and 12 more issues.

📊 Scan Details

  • Image: ghcr.io/smartdatafoundry/devcontainer
  • Scan Date: 2026-04-21 03:15:07 UTC
  • Total Vulnerabilities: 242

Action Run: view run
Trivy Report: view report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant