tianon
commented
1 year ago We don't do an explicit apk update there because apk add --no-cache implies it (but with the added behavior that it then prunes the updated package lists afterwards so that they don't end up in the final image).
Hi, Can you please explain why the repo is not updated(apk update) before adding the persistence deps? In the Alpine packages repo, OpenSSL is now updated and there are no vulnerabilities anymore, but I will get a vulnerability because php fpm is not adding the latest OpenSSL version.