fix: Dockerfile to reduce vulnerabilities

snyk-bot · snyk-bot · commit f0d36ecfacb5 · 2025-01-31T05:23:43.000Z
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-UPSTREAM-NODE-7430900 - https://snyk.io/vuln/SNYK-UPSTREAM-NODE-7430905 - https://snyk.io/vuln/SNYK-DEBIAN12-ZLIB-6008963 - https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-8658672 - https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-8658672
diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM node:20.15.0-bookworm-slim AS base
+FROM node:20.18.2-bookworm-slim AS base
 RUN adduser --disabled-password -home /home/cfu -shell /bin/bash cfu
 WORKDIR /root/cf-runtime
 COPY package.json yarn.lock ./

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM node:20.15.0-bookworm-slim AS base`
	`1`	`+FROM node:20.18.2-bookworm-slim AS base`
`2`	`2`	`RUN adduser --disabled-password -home /home/cfu -shell /bin/bash cfu`
`3`	`3`	`WORKDIR /root/cf-runtime`
`4`	`4`	`COPY package.json yarn.lock ./`