fix(deps): bump alpine from 3.15.4 to 3.16.0 in /alpine (#121)

* fix(deps): bump alpine from 3.15.4 to 3.16.0 in /alpine Bumps alpine from 3.15.4 to 3.16.0. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> * fix: Package versions Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Lukas Holota <[email protected]>
homecentr · Jun 28, 2022 · 5dfad08 · 5dfad08
1 parent e63c98d
commit 5dfad08
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/alpine/Dockerfile b/alpine/Dockerfile
@@ -1,4 +1,4 @@
-FROM alpine:3.15.4
+FROM alpine:3.16.0
 
 LABEL maintainer="Lukas Holota <[email protected]>"
 
@@ -14,10 +14,10 @@ RUN tar xzf /tmp/s6-overlay-${CPU_ARCH}.tar.gz -C / && \
     # These packages are included in the base image. They are explicitly upgrade to vulnerabilities below
     apk add --no-cache \
         # CVE-2021-36159
-        apk-tools=2.12.7-r3 \
+        apk-tools=2.12.9-r3 \
         # CVE-2021-3711, CVE-2021-3712
-        libssl1.1=1.1.1n-r0 \
-        shadow=4.8.1-r1 && \
+        libssl1.1=1.1.1o-r0 \
+        shadow=4.10-r3 && \
     rm /tmp/s6-overlay-${CPU_ARCH}.tar.gz
 
 COPY ./fs /