Skip to content

Commit

Permalink
Upgrade expat
Browse files Browse the repository at this point in the history
This fixes a security vulnerability in the version of expat that's part
of the Alpine image.

https://security.snyk.io/vuln/SNYK-ALPINE319-EXPAT-6241038
  • Loading branch information
thomasleese committed Feb 13, 2024
1 parent e0ef9c7 commit b3c7e64
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ RUN apk add --update --no-cache tzdata && \
echo "Europe/London" > /etc/timezone

# Upgrade ssl, crypto and curl libraries to latest version
RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl
RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl expat

# build-base: dependencies for bundle
# yarn: node package manager
Expand Down Expand Up @@ -79,7 +79,7 @@ RUN apk add --update --no-cache tzdata && \
echo "Europe/London" > /etc/timezone

# Upgrade ssl, crypto and curl libraries to latest version
RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl
RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl expat

# libpq: required to run postgres
# vips-dev: dependencies for ruby-vips (image processing library)
Expand Down

0 comments on commit b3c7e64

Please sign in to comment.