redisinsight
Patched Databases & Caching
from
mirror.gcr.io/redis/redisinsight
Pull Reference
ghcr.io/verity-org/redis/redisinsight
docker pull ghcr.io/verity-org/redis/redisinsight
Copa-Patched Image
Patched in-place from the upstream image using Copa . OS-level vulnerabilities are fixed without rebuilding \u2014 same layers, same behavior, fewer CVEs.
Supply Chain
Full compliance details
Signed
SLSA L3
SBOM
Rekor
Verify this artifact
Cosign signature
cosign verify \ --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ ghcr.io/verity-org/redis/redisinsight:3.0.2
Build provenance
gh attestation verify \ oci://ghcr.io/verity-org/redis/redisinsight:3.0.2 \ --owner verity-org
Vulnerability Scan
Found 74 vulnerabilit ies in the original image. 39 fixed by Copa. 35 remaining after patching.
2CRITICAL35HIGH28MEDIUM9LOW
Fix available — pending patch
These vulnerabilities have upstream fixes but could not be automatically patched.
| ID | Package | Installed | Fixed | Severity |
|---|---|---|---|---|
| CVE-2026-25639 | axios | 1.12.2 | 1.13.5, 0.30.3 | HIGH |
| CVE-2026-26996 | minimatch | 3.1.2 | 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 | HIGH |
| CVE-2026-27903 | minimatch | 3.1.2 | 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 | HIGH |
| CVE-2026-27904 | minimatch | 3.1.2 | 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 | HIGH |
| CVE-2026-26996 | minimatch | 9.0.5 | 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 | HIGH |
| CVE-2026-27903 | minimatch | 9.0.5 | 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 | HIGH |
| CVE-2026-27904 | minimatch | 9.0.5 | 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 | HIGH |
| CVE-2026-2359 | multer | 2.0.2 | 2.1.0 | HIGH |
| CVE-2026-3304 | multer | 2.0.2 | 2.1.0 | HIGH |
| CVE-2026-3520 | multer | 2.0.2 | 2.1.1 | HIGH |
| CVE-2026-4926 | path-to-regexp | 8.2.0 | 8.4.0 | HIGH |
| CVE-2026-33671 | picomatch | 4.0.3 | 4.0.4, 3.0.2, 2.3.2 | HIGH |
| CVE-2026-33151 | socket.io-parser | 4.2.4 | 3.3.5, 3.4.4, 4.2.6 | HIGH |
| CVE-2026-23745 | tar | 6.2.1 | 7.5.3 | HIGH |
| CVE-2026-23950 | tar | 6.2.1 | 7.5.4 | HIGH |
| CVE-2026-24842 | tar | 6.2.1 | 7.5.7 | HIGH |
| CVE-2026-26960 | tar | 6.2.1 | 7.5.8 | HIGH |
| CVE-2026-29786 | tar | 6.2.1 | 7.5.10 | HIGH |
| CVE-2026-31802 | tar | 6.2.1 | 7.5.11 | HIGH |
| CVE-2026-33750 | brace-expansion | 1.1.12 | 5.0.5, 3.0.2, 2.0.3, 1.1.13 | MEDIUM |
| CVE-2026-33750 | brace-expansion | 2.0.2 | 5.0.5, 3.0.2, 2.0.3, 1.1.13 | MEDIUM |
| CVE-2026-33750 | brace-expansion | 2.0.2 | 5.0.5, 3.0.2, 2.0.3, 1.1.13 | MEDIUM |
| CVE-2026-31808 | file-type | 16.5.4 | 21.3.1 | MEDIUM |
| CVE-2026-31808 | file-type | 20.4.1 | 21.3.1 | MEDIUM |
| CVE-2026-32630 | file-type | 20.4.1 | 21.3.2 | MEDIUM |
| CVE-2025-13465 | lodash | 4.17.21 | 4.17.23 | MEDIUM |
| CVE-2026-4923 | path-to-regexp | 8.2.0 | 8.4.0 | MEDIUM |
| CVE-2026-33672 | picomatch | 4.0.3 | 4.0.4, 3.0.2, 2.3.2 | MEDIUM |
| CVE-2025-15284 | qs | 6.13.0 | 6.14.1 | MEDIUM |
| CVE-2025-15284 | qs | 6.14.0 | 6.14.1 | MEDIUM |
| CVE-2026-33532 | yaml | 2.4.1 | 2.8.3, 1.10.3 | MEDIUM |
| CVE-2026-3449 | @tootallnate/once | 1.1.2 | 3.0.1 | LOW |
| CVE-2026-24001 | diff | 4.0.2 | 8.0.3, 5.2.2, 4.0.4, 3.5.1 | LOW |
| CVE-2026-2391 | qs | 6.13.0 | 6.14.2 | LOW |
| CVE-2026-2391 | qs | 6.14.0 | 6.14.2 | LOW |
Source
Copa (in-place patch)
Platforms
linux/amd64, linux/arm64
Registry
ghcr.io/verity-org
Upstream
mirror.gcr.io/redis/redisinsight