fix(docker): Update base image from Alpine 3.20 to 3.21 to address security vulnerabilities

thc1006 · thc1006 · commit 640e7edfdb32 · 2025-09-30T21:19:31.000+08:00
diff --git a/deploy/docker/cn-dms/Dockerfile b/deploy/docker/cn-dms/Dockerfile
@@ -1,7 +1,7 @@
 # CN DMS Multi-stage Dockerfile (2025 Best Practices)
 # Stage 1: Build
-# Using Alpine 3.20 (stable) to fix CVE-2025-46394 and CVE-2024-58251
-FROM golang:1.24.7-alpine3.20 AS builder
+# Using Alpine 3.21 (stable) to fix CVE-2025-46394 and CVE-2024-58251
+FROM golang:1.24.7-alpine3.21 AS builder
 
 # Security and metadata labels
 LABEL maintainer="O-RAN MANO Team"
diff --git a/deploy/docker/o2-client/Dockerfile b/deploy/docker/o2-client/Dockerfile
@@ -1,7 +1,7 @@
 # O2 Client Multi-stage Dockerfile (2025 Best Practices)
 # Stage 1: Build
-# Using Alpine 3.20 (stable) to fix CVE-2025-46394 and CVE-2024-58251
-FROM golang:1.24.7-alpine3.20 AS builder
+# Using Alpine 3.21 (stable) to fix CVE-2025-46394 and CVE-2024-58251
+FROM golang:1.24.7-alpine3.21 AS builder
 
 # Security and metadata labels
 LABEL maintainer="O-RAN MANO Team"
diff --git a/deploy/docker/orchestrator/Dockerfile b/deploy/docker/orchestrator/Dockerfile
@@ -4,8 +4,8 @@
 # Fixed for GitHub Actions CI/CD which builds from root
 
 # Stage 1: Build
-# Using Alpine 3.20 (stable) to fix CVE-2025-46394 and CVE-2024-58251
-FROM golang:1.24.7-alpine3.20 AS builder
+# Using Alpine 3.21 (stable) to fix CVE-2025-46394 and CVE-2024-58251
+FROM golang:1.24.7-alpine3.21 AS builder
 
 # Security and build metadata
 LABEL org.opencontainers.image.title="O-RAN Orchestrator"
diff --git a/deploy/docker/ran-dms/Dockerfile b/deploy/docker/ran-dms/Dockerfile
@@ -1,7 +1,7 @@
 # RAN DMS Multi-stage Dockerfile (2025 Best Practices)
 # Stage 1: Build
-# Using Alpine 3.20 (stable) to fix CVE-2025-46394 and CVE-2024-58251
-FROM golang:1.24.7-alpine3.20 AS builder
+# Using Alpine 3.21 (stable) to fix CVE-2025-46394 and CVE-2024-58251
+FROM golang:1.24.7-alpine3.21 AS builder
 
 # Security and metadata labels
 LABEL maintainer="O-RAN MANO Team"
diff --git a/deploy/docker/tn-agent/Dockerfile b/deploy/docker/tn-agent/Dockerfile
@@ -1,7 +1,7 @@
 # TN Agent Multi-stage Dockerfile (2025 Best Practices)
 # Stage 1: Build
-# Using Alpine 3.20 (stable) to fix CVE-2025-46394 and CVE-2024-58251
-FROM golang:1.24.7-alpine3.20 AS builder
+# Using Alpine 3.21 (stable) to fix CVE-2025-46394 and CVE-2024-58251
+FROM golang:1.24.7-alpine3.21 AS builder
 
 # Security and metadata labels
 LABEL maintainer="O-RAN MANO Team"
diff --git a/deploy/docker/tn-manager/Dockerfile b/deploy/docker/tn-manager/Dockerfile
@@ -1,7 +1,7 @@
 # TN Manager Multi-stage Dockerfile (2025 Best Practices)
 # Stage 1: Build
-# Using Alpine 3.20 (stable) to fix CVE-2025-46394 and CVE-2024-58251
-FROM golang:1.24.7-alpine3.20 AS builder
+# Using Alpine 3.21 (stable) to fix CVE-2025-46394 and CVE-2024-58251
+FROM golang:1.24.7-alpine3.21 AS builder
 
 # Security and metadata labels
 LABEL maintainer="O-RAN MANO Team"
diff --git a/docs/CI-VNF-OPERATOR-FAILURE-ANALYSIS.md b/docs/CI-VNF-OPERATOR-FAILURE-ANALYSIS.md
