Open OlgasAcc opened 3 months ago
We have no control over underlying alpine container as it comes from the node:20-alpine
base container.
We will probably respin the 4.0.0 containers soon, when I have found away to build the 32bit ARM containers again without them hanging.
The node:20-alpine
containers were only respun 8 hours ago.
We have a 4.0.1 release coming in the next 24hrs which gets built from the latest base containers.
@hardillb, @knolleary thanks a lot for a quick response! Got you, thanks for the update
Hello,
It looks like the new image of v4.0.0-22-minimal uses alpine 3.20.0 as a base image in Dockerfile. The alpine:3.20.0 is vulnerable, but the defects have been already fixed in v.3.20.1. Could you please rebuild this docker image (in case you already use 3.20 in Dockerfile) or upgrade it to 3.20.1 (in case you explicitly set alpine:3.20.0)?
Thanks