Skip to content

Commit 5c4c1f5

Browse files
committed
update postgres dockerfile to upgrade libgnutls when building to avoid security vulnerability
1 parent 1cc6292 commit 5c4c1f5

1 file changed

Lines changed: 7 additions & 1 deletion

File tree

docker/Dockerfile.postgres

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,2 +1,8 @@
1-
FROM postgres:16.12-bookworm
1+
FROM postgres:16.14-bookworm
2+
3+
# Update gnutls to pick up debian security fixes flagged by trivy (may not be needed after base image update)
4+
RUN apt-get update \
5+
&& apt-get install --no-install-recommends -y --only-upgrade libgnutls30 \
6+
&& rm -rf /var/lib/apt/lists/*
7+
28
COPY deployment/postgres-init-db /docker-entrypoint-initdb.d

0 commit comments

Comments
 (0)