File tree Expand file tree Collapse file tree 1 file changed +4
-5
lines changed
Expand file tree Collapse file tree 1 file changed +4
-5
lines changed Original file line number Diff line number Diff line change 11# Setup Node
2- FROM node:22-alpine3.22 AS base
3- # Refresh index and upgrade OpenSSL so all stages get patched version (fixes CVE-2025-15467, CVE-2025-4575).
4- # apk update is required so the build sees the latest openssl/libssl3; both packages must be upgraded.
5- RUN apk update && apk upgrade openssl libssl3
2+ FROM node:22-alpine3.23 AS base
63
74# # Upgrade npm (pin version for reproducibility; use npm@latest if you prefer)
85# RUN npm install -g npm@latest \
@@ -12,7 +9,9 @@ RUN apk update && apk upgrade openssl libssl3
129# Install dependencies
1310FROM base AS deps
1411# Check https://github.com/nodejs/docker-node/tree/b4117f9333da4138b03a546ec926ef50a31506c3#nodealpine to understand why libc6-compat might be needed.
15- RUN apk --no-cache add git
12+ RUN apk upgrade && apk --no-cache add git
13+ # Update OpenSSL to fix CVE-2025-4575
14+ RUN apk upgrade openssl
1615RUN apk add --no-cache libc6-compat
1716WORKDIR /app
1817COPY package*.json ./
You can’t perform that action at this time.
0 commit comments