fix(security): remediate Trivy HIGH CVEs in container image (#3)
Some checks failed
ci/woodpecker/push/web Pipeline failed
Some checks failed
ci/woodpecker/push/web Pipeline failed
Co-authored-by: Jason Woltje <jason@diversecanvas.com> Co-committed-by: Jason Woltje <jason@diversecanvas.com>
This commit was merged in pull request #3.
This commit is contained in:
@@ -38,7 +38,8 @@ ENV NODE_ENV=production \
|
||||
PORT=3000 \
|
||||
HOSTNAME=0.0.0.0
|
||||
RUN addgroup -g 1001 -S nodejs && adduser -S -u 1001 -G nodejs nextjs
|
||||
RUN apk add --no-cache wget && \
|
||||
RUN apk upgrade --no-cache && \
|
||||
apk add --no-cache wget && \
|
||||
mkdir -p /app/media && \
|
||||
chown -R nextjs:nodejs /app
|
||||
COPY --from=build --chown=nextjs:nodejs /app/public ./public
|
||||
|
||||
Reference in New Issue
Block a user