Skip to content

Commit

Permalink
Update libexpat to fix CVE-2023-52425. (#72)
Browse files Browse the repository at this point in the history
  • Loading branch information
@Oleksii-Klimov
Oleksii-Klimov authored Feb 13, 2024
1 parent c9e15fb commit c32707b
Showing 1 changed file with 2 additions and 3 deletions.
5 changes: 2 additions & 3 deletions Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,9 +3,6 @@ FROM python:3.11-alpine AS builder

ARG POETRY_VERSION=1.6.1

# Vulnerability fix: CVE-2023-5363
RUN apk update && apk upgrade --no-cache libcrypto3 libssl3

# Install alpine-sdk to compile some langchain dependencies (numexpr, numpy)
RUN apk add --no-cache alpine-sdk linux-headers

Expand Down Expand Up @@ -37,6 +34,8 @@ ENV LOG_LEVEL=INFO

# Vulnerability fix: CVE-2023-5363
RUN apk update && apk upgrade --no-cache libcrypto3 libssl3
# Vulnerability fix: CVE-2023-52425
RUN apk upgrade --no-cache libexpat

# Install libstdc++ to run the compiled dependencies
RUN apk add --no-cache libstdc++
Expand Down

0 comments on commit c32707b

Please sign in to comment.