Skip to content

chore: update VS Code to 1.117.0#37

Open
sdf-actions-actor[bot] wants to merge 1 commit into
mainfrom
automated/update-vscode-10c8e55
Open

chore: update VS Code to 1.117.0#37
sdf-actions-actor[bot] wants to merge 1 commit into
mainfrom
automated/update-vscode-10c8e55

Conversation

@sdf-actions-actor

Copy link
Copy Markdown
Contributor

🔄 Automated VS Code Update

This PR updates the VS Code commit hash to the latest stable release.

Previous version: 0870c2a0c7c0564e7631bfed2675573a94ba4455
New version: 10c8e557c8b9f9ed0a87f61f1c9a44bde731c409
Release: 1.117.0

Changes

  • Updated VSCODE_COMMIT in Dockerfile

Verification

This PR will trigger the build workflow to ensure the container builds successfully with the new VS Code version.


This PR was created automatically by the Update VS Code Version workflow.

Update VSCODE_COMMIT from 0870c2a to 10c8e55
@github-actions

Copy link
Copy Markdown

🔒 Trivy Security Scan Results

Status: ⚠️ Vulnerabilities found (see details in artifacts)
Vulnerabilities Found: 445 critical/high severity issues

⚠️ Action Required: Critical or high severity vulnerabilities detected.

Top 10 Critical/High Severity Vulnerabilities:

Type Package Vulnerability Severity Fixed Version
node-pkg handlebars CVE-2026-33937 CRITICAL 4.7.9
node-pkg minimist CVE-2021-44906 CRITICAL 1.2.6, 0.2.4
node-pkg protobufjs CVE-2026-41242 CRITICAL 8.0.1, 7.5.5
node-pkg sha.js CVE-2025-9288 CRITICAL 2.4.12
python-pkg Twisted CVE-2022-24801 CRITICAL 22.4.0
python-pkg fastmcp CVE-2026-32871 CRITICAL 3.2.0
python-pkg marimo CVE-2026-39987 CRITICAL 0.23.0
node-pkg @hono/node-server CVE-2026-29087 HIGH 1.19.10
node-pkg @isaacs/brace-expansion CVE-2026-25547 HIGH 5.0.1
node-pkg @xmldom/xmldom CVE-2026-34601 HIGH 0.8.12, 0.9.9

... and 8 more issues.

📊 Scan Details

  • Image: ghcr.io/smartdatafoundry/devcontainer
  • Scan Date: 2026-04-23 03:14:48 UTC
  • Total Vulnerabilities: 445

Action Run: view run
Trivy Report: view report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant