Skip to main content

consul

Patched
Security & Identityfrom mirror.gcr.io/hashicorp/consul
Pull Reference
ghcr.io/verity-org/hashicorp/consul
docker pull ghcr.io/verity-org/hashicorp/consul
Available Versions
2.0.1latest4 remaining
2.0.14 remaining
2.0.050 CVEs fixed2 remaining
1.22.789 CVEs fixed21 remaining
Copa-Patched Image

Patched in-place from the upstream image usingCopa. OS-level vulnerabilities are fixed without rebuilding \u2014 same layers, same behavior, fewer CVEs.

SignedSLSA L3SBOMRekor
Verify this artifact
Cosign signature
cosign verify \
  --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
  ghcr.io/verity-org/hashicorp/consul:2.0.1
Build provenance
gh attestation verify \
  oci://ghcr.io/verity-org/hashicorp/consul:2.0.1 \
  --owner verity-org

Vulnerability Scan

Found 4 vulnerabilities — none have upstream fixes available.

1 HIGH3 UNKNOWN

Fix available — pending patch

These vulnerabilities have upstream fixes but could not be automatically patched.

Awaiting upstream fix

No fix is available yet for these vulnerabilities.

Source
Copa (in-place patch)
Platforms
linux/amd64, linux/arm64
Registry
ghcr.io/verity-org
Upstream
mirror.gcr.io/hashicorp/consul
Version
2.0.1