From b3c7e64a3139fa7c8817ad5a2b6ef7a26f6310f2 Mon Sep 17 00:00:00 2001
From: Thomas Leese <thomas@leese.io>
Date: Tue, 13 Feb 2024 09:17:15 +0000
Subject: [PATCH] Upgrade expat

This fixes a security vulnerability in the version of expat that's part
of the Alpine image.

https://security.snyk.io/vuln/SNYK-ALPINE319-EXPAT-6241038
---
 Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index f7c8b4a81a..c5f04fa7f1 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -13,7 +13,7 @@ RUN apk add --update --no-cache tzdata && \
     echo "Europe/London" > /etc/timezone
 
 # Upgrade ssl, crypto and curl libraries to latest version
-RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl
+RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl expat
 
 # build-base: dependencies for bundle
 # yarn: node package manager
@@ -79,7 +79,7 @@ RUN apk add --update --no-cache tzdata && \
     echo "Europe/London" > /etc/timezone
 
 # Upgrade ssl, crypto and curl libraries to latest version
-RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl
+RUN apk upgrade --no-cache openssl libssl3 libcrypto3 curl expat
 
 # libpq: required to run postgres
 # vips-dev: dependencies for ruby-vips (image processing library)