harbor-core

Data

docker pull reg.mini.dev/harbor-core

Data

Updated on June 14

docker pull reg.mini.dev/harbor-core

Risk Reduction

Understand the security benefits of the Minimus image by comparing its vulnerability profile and size to the public image.

Understand how Minimus vulnerability mitigations and compliance configurations secure this image.

Unique CVE count. Some vulnerabilities may impact multiple packages.

reg.mini.dev/harbor-core:latest

vs.

https://hub.docker.com/layers/goharbor/harbor-core/v2.15.1

Daily report prepared June 22, 2026 at 4:57 AM

CVE	severity	Affected Packages
CVE-2026-35172	high	harbor-2.15 harbor-2.15-common-oci-entrypoint +1
CVE-2026-32286	high	harbor-2.15 harbor-2.15-common-oci-entrypoint +1
CVE-2026-41888	medium	harbor-2.15 harbor-2.15-common-oci-entrypoint +1
CVE-2025-24358	medium	harbor-2.15 harbor-2.15-common-oci-entrypoint +1

Compressed image sizes for amd64.

11 total packages

11 combined OS and application packages

207 total packages

159 packages in additional layers

48 packages in base layer

Color indicates highest severity impacting the package:

critical

high

medium

low

unknown

none

Scale: 1 square = 1 package

Report prepared June 22, 2026 at 4:57 AM

Package	version	license	type	Total Vulnerabilities
stdlib	go1.25.9	BSD-3-Clause	go-module	25
openssl	3.0.18-3.ph5	(Artistic-1.0 OR GPL-1.0-or-later) AND (Artistic-1.0-Perl OR GPL-1.0-or-later) AND (Artistic-1.0-Perl OR GPL-1.0-or-later) AND (BSD-2-Clause OR OpenSSL) AND (BSD-3-Clause OR GPL-1.0-or-later OR GPL-2.0-only OR OpenSSL) AND (BSD-3-Clause OR GPL-1.0-or-later OR OpenSSL) AND (BSD-3-Clause OR GPL-2.0-or-later OR LGPL-2.1-or-later OR MPL-1.1) AND (BSD-3-Clause OR OpenSSL) AND Apache-2.0 AND Artistic-1.0 AND BSD-2-Clause AND BSD-3-Clause AND BSD-Source-Code AND CC0-1.0 AND GPL-1.0-only AND OpenSSL AND snprintf	rpm	16
openssl-libs	3.0.18-3.ph5	(Artistic-1.0 OR GPL-1.0-or-later) AND (Artistic-1.0-Perl OR GPL-1.0-or-later) AND (Artistic-1.0-Perl OR GPL-1.0-or-later) AND (BSD-2-Clause OR OpenSSL) AND (BSD-3-Clause OR GPL-1.0-or-later OR GPL-2.0-only OR OpenSSL) AND (BSD-3-Clause OR GPL-1.0-or-later OR OpenSSL) AND (BSD-3-Clause OR GPL-2.0-or-later OR LGPL-2.1-or-later OR MPL-1.1) AND (BSD-3-Clause OR OpenSSL) AND Apache-2.0 AND Artistic-1.0 AND BSD-2-Clause AND BSD-3-Clause AND BSD-Source-Code AND CC0-1.0 AND GPL-1.0-only AND OpenSSL AND snprintf	rpm	16
golang.org/x/crypto	v0.49.0		go-module	13
golang.org/x/net	v0.52.0		go-module	13