diff --git a/docker/ubi8/Dockerfile-fips b/docker/ubi8/Dockerfile-fips index 767c173bd..0106ded07 100644 --- a/docker/ubi8/Dockerfile-fips +++ b/docker/ubi8/Dockerfile-fips @@ -44,7 +44,7 @@ RUN ln -sf /usr/local/aws-cli/v2/current/bin/aws /usr/local/bin/aws && \ # Install and update security-critical packages RUN yum -y install git bash curl wget binutils bzip2-libs RUN yum -y install ca-certificates-2024.2.69_v8.0.303-80.0.el8_10 -RUN yum -y remove tar vim vi && \ yum clean all + # CVE FIX , Install specific versions of libraries to avoid vulnerabilities RUN wget https://tsn.miraclelinux.com/system/files/AXS8/x86_64/UPDATE/RPMS/expat-2.2.5-15.el8_10.x86_64.rpm && \ @@ -71,6 +71,9 @@ RUN echo '#!/usr/bin/env bash' > /usr/local/bin/hal && \ echo '/opt/halyard/bin/hal "$@"' >> /usr/local/bin/hal && \ chmod +x /usr/local/bin/hal +RUN yum -y remove tar vim vi wget +RUN yum clean all + # Create a user and use it for running the app RUN adduser spinnaker USER spinnaker