Docker base image update 3.11.14

[securestep9]

Docker base image update to 3.11.14-slim

Type of change

• New core framework functionality
• Bugfix (non-breaking change which fixes an issue)
• Code refactoring without any functionality changes
• New or existing module/payload change
• Documentation/localization improvement
• Test coverage improvement
• Dependency upgrade
• Other improvement (best practice, cleanup, optimization, etc)

[coderabbitai]

Summary by CodeRabbit

Release Notes

• Chores
  • Updated Docker base image to Python 3.11.14 (minor version bump from 3.11.13)

_{✏️ Tip: You can customize this high-level summary in your review settings.}

Walkthrough

The Dockerfile's Python base image is updated from version 3.11.13-slim to 3.11.14-slim in a multi-stage build. No functional or structural changes to the build configuration were made.

Changes

Cohort / File(s)	Summary
Dockerfile base image update Dockerfile	Base image tag bumped from python:3.11.13-slim to python:3.11.14-slim across all build stages

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• Update Dockerfile - bump python to 3.11.13 #1110 — Consecutive Python version bump applied to the same Dockerfile base image line
• Dockerfile change to multi-stage with 'nettacker' as entrypoint + related CI/CD changes #1115 — Earlier multi-stage Dockerfile introduction and entrypoint changes that established the structure this PR maintains

Suggested labels

Docker

Suggested reviewers

• arkid15r

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The pull request title directly and clearly summarizes the main change: updating the Docker base image to version 3.11.14.
Description check	✅ Passed	The pull request description is directly related to the changeset, specifying the Docker base image update to 3.11.14-slim and appropriately categorizing the change.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

📜 Recent review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between bcbf512 and f165d46.

📒 Files selected for processing (1)

• Dockerfile

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (5)

• GitHub Check: Test build on ubuntu-24.04
• GitHub Check: Test Docker image
• GitHub Check: Test Docker 26.0.0-1ubuntu.24.04noble image build
• GitHub Check: Test Docker 27.5.0-1ubuntu.24.04noble image build
• GitHub Check: Test Docker 26.1.4-1ubuntu.24.04noble image build

🔇 Additional comments (1)

Dockerfile (1)

3-3: Good practice to update the base image.

Updating to Python 3.11.14-slim includes important security fixes: CVE-2025-59375 (libexpat upgrade to 2.7.3), tarfile validation improvements, and ZIP64 consistency checks. The image is available on Docker Hub and this patch release is well-established.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}