This directory contains historical security scan results for Docker images used in the deployer.
| Image | Version | HIGH | CRITICAL | Status | Last Scan | Details |
|---|---|---|---|---|---|---|
torrust/tracker-deployer |
latest | 25 | 7 | Jan 10, 2026 | View | |
torrust/tracker-backup |
local | 9 | 2 | Feb 2, 2026 | View | |
caddy |
2.10 | 3 | 1 | Jan 13, 2026 | View | |
prom/prometheus |
v3.5.0 | 0 | 0 | ✅ SECURE | Dec 29, 2025 | View |
grafana/grafana |
12.3.1 | 0 | 0 | ✅ SECURE | Dec 29, 2025 | View |
mysql |
8.4 | 0 | 0 | ✅ SECURE | Dec 29, 2025 | View |
Overall Status:
Each file contains the complete scan history for a service:
- torrust-tracker-deployer.md - The deployer Docker image
- torrust-tracker-backup.md - Backup container for tracker data
- caddy.md - Caddy TLS termination proxy
- prometheus.md - Prometheus monitoring
- grafana.md - Grafana dashboards
- mysql.md - MySQL database
- Run Trivy scan:
trivy image --severity HIGH,CRITICAL <image-name> - Add results to the appropriate service file
- Update the summary table above
- Commit with message:
docs: add security scan for <service> (<date>)
See ../README.md for detailed scanning instructions.