Skip to content

Backend: Alternative Version Suggestion Engine for Services #15

New issue
New issue
Open
Open
Backend: Alternative Version Suggestion Engine for Services#15
Labels
BackendFor all Backend related issues.FrontendFor all Frontend related issues.enhancementNew feature or request
@Sanjeev-Kumar78

Description

@Sanjeev-Kumar78
Sanjeev-Kumar78
opened on Oct 19, 2025

Is your feature request related to a problem? Please describe.

Currently, the platform does not provide automated suggestions for safer or more stable versions of container images used in services.
Although Trivy scanning is implemented in the services/ directory to detect vulnerabilities, users still have to manually identify and update to versions without critical issues.

Describe the solution you'd like

Implement an Alternative Version Suggestion Engine that:

  • Analyzes the results from Trivy vulnerability scans
  • Automatically suggests safer or more stable versions of container images for each service
  • Highlights versions that fix critical or high-severity vulnerabilities
  • Provides an option to update the service configuration with the recommended version

Describe alternatives you've considered

  • Manual version checking:
    Users can manually check Docker Hub tags and release notes, but this is time-consuming and error-prone.
  • Ignoring vulnerabilities:
    Accepting the current version despite critical vulnerabilities risks production stability and security.

Use Case

Enhances security and stability by guiding users to safer container versions, reducing manual effort and improving compliance with security best practices.
Supports integration with the Docker Compose File Builder UI for seamless updates.

Additional context

  • Trivy scanning is already implemented in the services/ directory.
  • Recommendations should prioritize patch versions that resolve high and critical vulnerabilities.
  • Can optionally display release notes or changelogs from Docker Hub to help users evaluate updates.

Implementation Considerations

  • 🧠 Analyze Trivy scan results programmatically to identify vulnerabilities and affected versions
  • 🔄 Suggest newer or safer versions automatically, but allow user approval before updating
  • 📊 Optionally include a dashboard for version suggestions and vulnerability trends
  • ⚠️ Ensure backward compatibility and avoid breaking existing service configurations
  • 📝 Log suggested and applied updates for audit purposes

Metadata

Metadata

Assignees

No one assigned

    Labels

    BackendFor all Backend related issues.FrontendFor all Frontend related issues.enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions