ansible/flaskpaste
1
0
Fork 0
forked from claw/flaskpaste
Code Pull Requests Activity

container: upgrade system setuptools to fix jaraco.context CVE

Browse Source
This commit is contained in:
Username
2026-01-18 11:12:17 +01:00
parent 6c0e2ab07f
commit cc1bba9a57
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
Containerfile
View File

@@ -29,8 +29,9 @@ FROM python:3.11-slim
LABEL maintainer="FlaskPaste" LABEL maintainer="FlaskPaste"
LABEL description="Lightweight secure pastebin REST API" LABEL description="Lightweight secure pastebin REST API"
# Clean base image caches and create non-root user # Clean base image caches, upgrade system pip/setuptools, create non-root user
RUN apt clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* \ RUN apt clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* \
&& pip install --no-cache-dir --upgrade pip setuptools \
&& groupadd -r flaskpaste && useradd -r -g flaskpaste flaskpaste && groupadd -r flaskpaste && useradd -r -g flaskpaste flaskpaste
# Copy virtual environment from builder # Copy virtual environment from builder