Skip to content

Commit d05ecba

Browse files
aarthy-dkaarthy-dk
committed
Merge branch 'fix/OBS-2001-upgrade-libcurl-busybox' into 'enterprise'
fix: upgrade libcurl and busybox from Alpine edge to fix Wiz scan CVEs See merge request dkinternal/observability/dataops-observability!76
2 parents da6c054 + 34f31fc commit d05ecba

File tree

1 file changed

+3
-1
lines changed

1 file changed

+3
-1
lines changed

deploy/docker/observability-be.dockerfile

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,9 @@ RUN python3 -O -m pip install --no-deps /tmp/dk --prefix=/dk
3333
FROM ${BASE_IMAGE_URL}python:3.13-alpine3.23 AS runtime-image
3434

3535
RUN apk update && apk upgrade && apk add --no-cache librdkafka=2.12.1-r0 \
36-
&& apk del curl libcurl \
36+
&& apk del curl \
37+
&& apk upgrade --no-cache libcurl busybox busybox-binsh ssl_client \
38+
--repository=https://dl-cdn.alpinelinux.org/alpine/edge/main \
3739
&& pip install --no-cache-dir --upgrade pip
3840

3941
# Grab the pre-built app from the build-image. This way we don't have

0 commit comments

Comments
 (0)