Update Dockerfile - Githubissues

benzino77 / clamav-rest-api

ClamAV REST API. Scan files using simple POST request.

MIT License

105 stars 37 forks source link

Update Dockerfile #47

Closed christianwoehrle closed 1 year ago

christianwoehrle commented 1 year ago

fix: cve in base image

The trivy operator reported 18 critical cves for the base image of clamav-rest-api.

CRITICAL   HIGH   MEDIUM   LOW   UNKNOWN
 18        67     33       84    4

I updated the base image in my fork and deployed the new image in kubernetes, resulting in a reduced list of cves.

CRITICAL   HIGH   MEDIUM   LOW   UNKNOWN
1          22     8        78    1

The container did start and lgtm. However I'm not a nodejs programmer so I cannot judge if this might have side effects due to the language update.

benzino77 commented 1 year ago

Thanks Christian! I will update docker images when I find time. I would probably go with nodejs18 as it is LTS version (and there shouldn't be a problem with that version from CRA functionality perspective). https://github.com/nodejs/release#release-schedule

benzino77 commented 1 year ago

I have updated docker image to v18. You can try new one.