Changing Default Password and Addressing Vulnerable Docker Images

Original Slack Thread

Hello, we are trying to deploy datahub by following the quickstart guide. While we were successful in deploying and accessing the front-end page, we were not able to change the default password for the “datahub” user. Can someone please help us on how to change the password?

Also, we found that the docker images that the quickstart guide using are vulnerable with CVE-2022-42889 finding. Can someone please help us know whic image is prone to the above finding?

Hey there! :wave: Make sure your message includes the following information if relevant, so we can help more effectively!

  1. Which DataHub version are you using? (e.g. 0.12.0)
  2. Please post any relevant error logs on the thread!

Datahub version: 0.13.0

Please see the documentation here for changing the password:

That particular CVE-2022-42889 is not showing up in the trivy scans of the images. Can you share which security tools you’re using?

Thank You <@U03MF8MU5P0> , Vamshi and i will provide more information on the security finding early next week!