Skip to content

Commit

Permalink
Fix: CVEs on marvin container
Browse files Browse the repository at this point in the history 
update alpine base image to 3.18.4
update libcrypto3 and libssl3 to new version
  • Loading branch information
@mmmarceleza
mmmarceleza committed Nov 9, 2023
1 parent f37a7e9 commit 9a95ef4
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,9 +34,10 @@ RUN CGO_ENABLED=0 GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} go build \
-X github.com/undistro/marvin/pkg/version.commit=${COMMIT} \
-X github.com/undistro/marvin/pkg/version.date=${DATE}" -a -o marvin main.go

FROM alpine:3.17.2
FROM alpine:3.18.4

RUN addgroup -g 8494 -S nonroot && adduser -u 8494 -D -S nonroot -G nonroot
RUN addgroup -g 8494 -S nonroot && adduser -u 8494 -D -S nonroot -G nonroot \
&& apk add libcrypto3=3.1.4-r0 libssl3=3.1.4-r0 # fix CVE-2023-5363
USER 8494:8494

WORKDIR /
Expand Down

0 comments on commit 9a95ef4

Please sign in to comment.