Skip to main content

prometheus-es-exporter

Patched
Monitoring & Observabilityfrom quay.io/prometheuscommunity/elasticsearch-exporter
Pull Reference
ghcr.io/verity-org/prometheuscommunity/elasticsearch-exporter
docker pull ghcr.io/verity-org/prometheuscommunity/elasticsearch-exporter
Available Versions
v1.10.0latest45 CVEs fixed
v1.9.073 CVEs fixed
v1.8.078 CVEs fixed
Copa-Patched Image

Patched in-place from the upstream image usingCopa. OS-level vulnerabilities are fixed without rebuilding \u2014 same layers, same behavior, fewer CVEs.

SignedSLSA L3SBOMRekor
Verify this artifact
Cosign signature
cosign verify \
  --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
  ghcr.io/verity-org/prometheuscommunity/elasticsearch-exporter:v1.10.0
Build provenance
gh attestation verify \
  oci://ghcr.io/verity-org/prometheuscommunity/elasticsearch-exporter:v1.10.0 \
  --owner verity-org

Vulnerability Scan

Found 45 vulnerabilities in the original image. 45 fixed by Copa.

1 CRITICAL29 HIGH13 MEDIUM1 LOW1 UNKNOWN
Source
Copa (in-place patch)
Platforms
linux/amd64, linux/arm64
Registry
ghcr.io/verity-org
Upstream
quay.io/prometheuscommunity/elasticsearch-exporter
Version
v1.10.0