Skip to content

chore: update VS Code to 1.120.0#42

Open
sdf-actions-actor[bot] wants to merge 1 commit into
mainfrom
automated/update-vscode-0958016
Open

chore: update VS Code to 1.120.0#42
sdf-actions-actor[bot] wants to merge 1 commit into
mainfrom
automated/update-vscode-0958016

Conversation

@sdf-actions-actor

Copy link
Copy Markdown
Contributor

🔄 Automated VS Code Update

This PR updates the VS Code commit hash to the latest stable release.

Previous version: 8b640eef5a6c6089c029249d48efa5c99adf7d51
New version: 0958016b2af9f09bb4257e0df4a95e2f90590f9f
Release: 1.120.0

Changes

  • Updated VSCODE_COMMIT in Dockerfile

Verification

This PR will trigger the build workflow to ensure the container builds successfully with the new VS Code version.


This PR was created automatically by the Update VS Code Version workflow.

Update VSCODE_COMMIT from 8b640ee to 0958016
@github-actions

Copy link
Copy Markdown

🔒 Trivy Security Scan Results

Status: ⚠️ Vulnerabilities found (see details in artifacts)
Vulnerabilities Found: 279 critical/high severity issues

⚠️ Action Required: Critical or high severity vulnerabilities detected.

Top 10 Critical/High Severity Vulnerabilities:

Type Package Vulnerability Severity Fixed Version
node-pkg handlebars CVE-2026-33937 CRITICAL 4.7.9
node-pkg minimist CVE-2021-44906 CRITICAL 1.2.6, 0.2.4
node-pkg protobufjs CVE-2026-41242 CRITICAL 8.0.1, 7.5.5
node-pkg sha.js CVE-2025-9288 CRITICAL 2.4.12
python-pkg Twisted CVE-2022-24801 CRITICAL 22.4.0
python-pkg fastmcp CVE-2026-32871 CRITICAL 3.2.0
node-pkg @github/copilot CVE-2026-45033 HIGH 1.0.43
node-pkg @github/copilot CVE-2026-45033 HIGH 1.0.43
node-pkg @hono/node-server CVE-2026-29087 HIGH 1.19.10
node-pkg @isaacs/brace-expansion CVE-2026-25547 HIGH 5.0.1

... and 9 more issues.

📊 Scan Details

  • Image: ghcr.io/smartdatafoundry/devcontainer
  • Scan Date: 2026-05-14 03:16:26 UTC
  • Total Vulnerabilities: 279

Action Run: view run
Trivy Report: view report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant