fix(devcontainer): apply full OS upgrade to remediate base image CVEs (#32)

Copilot · idvoretskyi · web-flow · commit 4424d1b85fc4 · 2026-04-27T16:42:38.000+03:00
* fix: upgrade gnupg/keyboxd packages to patch CVE-2025-68973 Agent-Logs-Url: https://github.com/idvoretskyi/dev/sessions/f48c3f17-bd7c-41fc-b793-37edd0df4935 Co-authored-by: idvoretskyi <118459+idvoretskyi@users.noreply.github.com> * fix: use apt-get -y upgrade to patch all vulnerabilities in devcontainer image Agent-Logs-Url: https://github.com/idvoretskyi/dev/sessions/04961c2d-92a3-4c55-9067-c4ac0f1a6a31 Co-authored-by: idvoretskyi <118459+idvoretskyi@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: idvoretskyi <118459+idvoretskyi@users.noreply.github.com>
diff --git a/.devcontainer/Dockerfile b/.devcontainer/Dockerfile
@@ -9,5 +9,6 @@ RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
     sudo \
     linux-libc-dev \
     vim-tiny \
+    && apt-get -y upgrade \
     && apt-get clean \
     && rm -rf /var/lib/apt/lists/*
