Skip to content

Commit 65b37fb

Browse files
Aurelian-ShuttleworthAurelian-Shuttleworth
committed
Update OpenSSL package to mitigate CVE-2023-5363
OpenSSL package was updated in the Dockerfile to mitigate potential threats associated with vulnerability CVE-2023-5363. Specifically, the command "RUN apk add --no-cache --upgrade "openssl>=3.1.4-r1"" was added to ensure an updated version of OpenSSL is used which addresses the mentioned vulnerability. This enhances the overall security of our Docker containerised application. Signed-off-by: Aurelian Shuttleworth <aurelian@shuttleworth.tech>
1 parent 21a9745 commit 65b37fb

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

Dockerfile

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -23,6 +23,9 @@ RUN make build
2323

2424
FROM alpine:3.18.4
2525

26+
# Mitigate CVE-2023-5363
27+
RUN apk add --no-cache --upgrade "openssl>=3.1.4-r1"
28+
2629
COPY --from=builder /go/src/terraform-docs/bin/linux-amd64/terraform-docs /usr/local/bin/
2730

2831
ENTRYPOINT ["terraform-docs"]

0 commit comments

Comments
 (0)