This is an automated email from the ASF dual-hosted git repository.
kezhenxu94 pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/skywalking-satellite.git
The following commit(s) were added to refs/heads/main by this push:
new a6fadf6 cves: upgrade base image to alpine:3.23 to fix CVE-2026-27171
(zlib) (#237)
a6fadf6 is described below
commit a6fadf6146ef2886f727a86d144407966163697e
Author: tetrate-ci[bot] <[email protected]>
AuthorDate: Sat Mar 28 13:57:40 2026 +0800
cves: upgrade base image to alpine:3.23 to fix CVE-2026-27171 (zlib) (#237)
Alpine 3.23 includes zlib 1.3.2-r0 which fixes CVE-2026-27171 (HIGH).
Also upgrades busybox to 1.37.0-r30.
Verified clean with trivy scan (0 vulnerabilities in alpine and gobinary
layers).
Co-authored-by: CVE Bot <[email protected]>
---
docker/Dockerfile | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/docker/Dockerfile b/docker/Dockerfile
index 32e0abe..ea0f50c 100644
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@@ -28,7 +28,7 @@ COPY . .
RUN VERSION=$VERSION make ARCH=${TARGETARCH} linux
RUN mv /src/bin/skywalking-satellite-${VERSION}-linux-${TARGETARCH}
/src/bin/skywalking-satellite
-FROM alpine:3.21
+FROM alpine:3.23
RUN apk add --no-cache ca-certificates && \
apk -U upgrade
