fix: bump openbao base image 2.5.0→2.5.1 (CVE-2026-24051)

go.opentelemetry.io/otel/sdk v1.39.0 had PATH hijacking vulnerability. Fixed in otel/sdk v1.40.0, included in openbao 2.5.1.
2026-02-28 20:47:51 -06:00
parent d07a840f25
commit 067e1015dd
1 changed files with 1 additions and 1 deletions
--- a/docker/openbao/Dockerfile
+++ b/docker/openbao/Dockerfile
@@ -1,4 +1,4 @@
-FROM quay.io/openbao/openbao:2.5.0
+FROM quay.io/openbao/openbao:2.5.1

 LABEL maintainer="Mosaic Stack <dev@mosaic.local>"
 LABEL description="OpenBao secrets management for Mosaic Stack"