Snyk vulnerability scan picks this up when scanning our images as a 'high-severity', it seems to be a package in alpine3.17, and that is the base image for python:3.10-alpine which we use for our builds, even after upgrading it to the latest in the dockerfile, it still doesnt pass the scan.
ENVIRONMENT.
Docker (alpine-3.17)
python3.10-alpine
STEPS TO REPRODUCE
create a docker file with python3.10-alpine as base
Snyk vulnerability scan picks this up when scanning our images as a 'high-severity', it seems to be a package in alpine3.17, and that is the base image for python:3.10-alpine which we use for our builds, even after upgrading it to the latest in the dockerfile, it still doesnt pass the scan.
ENVIRONMENT.
STEPS TO REPRODUCE