From b7c2b21eeb095827bc7c2258ebf0680d22d55582 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 19 May 2024 21:29:48 +0000 Subject: [PATCH] fix: Dockerfile.base to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-ALPINE317-BUSYBOX-6913412 - https://snyk.io/vuln/SNYK-ALPINE317-BUSYBOX-6913412 - https://snyk.io/vuln/SNYK-ALPINE317-BUSYBOX-6913412 - https://snyk.io/vuln/SNYK-ALPINE317-OPENSSL-6593966 - https://snyk.io/vuln/SNYK-ALPINE317-OPENSSL-6593966 --- Dockerfile.base | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Dockerfile.base b/Dockerfile.base index 69f7e97..f0104fc 100644 --- a/Dockerfile.base +++ b/Dockerfile.base @@ -9,7 +9,7 @@ RUN mix setup && mix release # Compressor stage for compressing the bundled erlang runtime # You may call it premature optimization, I call it "a few MB less" :P -FROM alpine:3.17 as compressor +FROM alpine:3.18.6 as compressor COPY --from=builder /app/_build/prod/rel/clei /app @@ -17,7 +17,7 @@ RUN apk add upx && \ upx --lzma --best /app/erts-*/bin/* || true # Final destination image -FROM alpine:3.17 +FROM alpine:3.18.6 LABEL maintainer="Nick Fischer "