From e54188eff93de7772a0f406cfbc2546658dc448b Mon Sep 17 00:00:00 2001 From: Leonard Goodell Date: Tue, 14 Nov 2023 11:58:15 -0700 Subject: [PATCH] fix: Address CVE in Alpine base image Signed-off-by: Leonard Goodell --- Dockerfile | 2 ++ 1 file changed, 2 insertions(+) diff --git a/Dockerfile b/Dockerfile index 31b197e..441c4ee 100644 --- a/Dockerfile +++ b/Dockerfile @@ -46,6 +46,8 @@ LABEL license='SPDX-License-Identifier: Apache-2.0' \ # dumb-init needed for injected secure bootstrapping entry point script when run in secure mode. RUN apk add --update --no-cache dumb-init +# Ensure using latest versions of all installed packages to avoid any recent CVEs +RUN apk --no-cache upgrade WORKDIR / COPY --from=builder /device-uart/Attribution.txt /