Skip to content

bump alpine and golang version in dockerfile#605

Merged
41tair merged 2 commits into
mainfrom
fix/go-cve
Feb 9, 2026
Merged

bump alpine and golang version in dockerfile#605
41tair merged 2 commits into
mainfrom
fix/go-cve

Conversation

@41tair

@41tair 41tair commented Feb 8, 2026

Copy link
Copy Markdown
Member

Description

Bump versions in dockerfile

Type of Change

  • Bug fix
  • New feature
  • Refactor
  • Performance improvement
  • Other

Essential Checklist

Testing

  • I have tested the changes locally and confirmed they work as expected
  • I have added unit tests where necessary and they pass successfully

Bug Fix (if applicable)

  • I have used GitHub syntax to close the related issue (e.g., Fixes #123 or Closes #123)

Additional Information

Please provide any additional context that would help reviewers understand the changes.

@dosubot dosubot Bot added the size:XS This PR changes 0-9 lines, ignoring generated files. label Feb 8, 2026
@gemini-code-assist

Copy link
Copy Markdown
Contributor

Summary of Changes

Hello @41tair, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request updates the foundational components within the Dockerfile to ensure the application's build and runtime environments are current. It specifically targets upgrading the Golang compiler version and the Alpine Linux base image, which brings the benefit of the latest bug fixes, security enhancements, and performance improvements from these core dependencies.

Highlights

  • Golang Version Update: The base Golang image for the builder stage has been updated from golang:1.25-alpine to golang:1.25.7.
  • Alpine Linux Version Update: The base Alpine Linux image for the final runtime container has been updated from alpine:3.20 to alpine:3.23.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Changelog
  • docker/serverless.dockerfile
    • Updated the golang base image from 1.25-alpine to 1.25.7.
    • Updated the alpine base image from 3.20 to 3.23.
Activity
  • The pull request was created by 41tair.
  • The author has indicated that they have tested the changes locally and confirmed they work as expected.
  • The author has indicated that unit tests have been added where necessary and pass successfully.
  • No other review comments or activities have been recorded yet.
Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature Command Description
Code Review /gemini review Performs a code review for the current pull request in its current state.
Pull Request Summary /gemini summary Provides a summary of the current pull request in its current state.
Comment @gemini-code-assist Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help /gemini help Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

  1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution.

@dosubot dosubot Bot added dependencies Pull requests that update a dependency file plugin-daemon labels Feb 8, 2026

@gemini-code-assist gemini-code-assist Bot left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request aims to update the Golang and Alpine versions in the Dockerfile. I've found two critical issues in docker/serverless.dockerfile that will likely cause the build to fail. First, the updated Golang base image is Debian-based, but the subsequent commands use Alpine's package manager (apk). Second, the specified Alpine version for the final stage does not seem to exist. My review includes suggestions to fix these issues. Additionally, you might want to check docker/local.dockerfile to ensure version consistency across all Dockerfiles in the project.

Comment thread docker/serverless.dockerfile Outdated
Comment thread docker/serverless.dockerfile
@dosubot dosubot Bot added the lgtm This PR has been approved by a maintainer label Feb 9, 2026
@41tair 41tair merged commit 0917707 into main Feb 9, 2026
7 checks passed
@41tair 41tair deleted the fix/go-cve branch February 9, 2026 03:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file lgtm This PR has been approved by a maintainer plugin-daemon size:XS This PR changes 0-9 lines, ignoring generated files.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants