Skip to content

Commit af8eeca

Browse files
sir-gonsir-gon
authored
Merge pull request #145 from sir-gon/develop
[SECURITY] try to remove CVE-2024-9143 vulnerability in openssl
2 parents f463e62 + e864fb4 commit af8eeca

File tree

1 file changed

+4
-2
lines changed

1 file changed

+4
-2
lines changed

Dockerfile

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,8 @@ FROM mcr.microsoft.com/dotnet/sdk:8.0.402-alpine3.19-amd64 AS init
44
ENV WORKDIR=/app
55
WORKDIR ${WORKDIR}
66

7-
RUN apk add --update --no-cache make
7+
RUN apk add --update --no-cache make \
8+
&& apk upgrade --no-cache # Avoid some CVE reports updating basic packages.
89

910
###############################################################################
1011
FROM init AS base
@@ -105,7 +106,8 @@ CMD ["make", "test"]
105106
##
106107
FROM mcr.microsoft.com/dotnet/runtime:8.0.8-alpine3.19-amd64 AS production
107108

108-
RUN apk add --update --no-cache make
109+
RUN apk add --update --no-cache make \
110+
&& apk upgrade --no-cache # Avoid some CVE reports updating basic packages.
109111

110112
ENV LOG_LEVEL=info
111113
ENV BRUTEFORCE=false

0 commit comments

Comments
 (0)