fix(docker): upgrade alpine packages to patch CVE-2025-60876 and CVE-2026-27171

2026-03-31 10:20:30 +02:00 · 2026-03-31 10:20:30 +02:00 · 3e60a2a056
commit 3e60a2a056
parent aed5f0475d
1 changed files with 2 additions and 1 deletions
--- a/3
+++ b/3
@ -18,7 +18,8 @@ RUN CGO_ENABLED=0 go build -ldflags="-s -w -X github.com/torrentclaw/unarr/inter
 # ---- Runtime stage ----
 FROM alpine:3.21

-RUN apk add --no-cache ca-certificates tzdata
+RUN apk upgrade --no-cache && \
+    apk add --no-cache ca-certificates tzdata

 # Non-root user (UID 1000 matches typical host user for volume permissions)
 RUN addgroup -g 1000 unarr && adduser -u 1000 -G unarr -D -h /home/unarr unarr