From c1c92ddc39a787614779f529309c61cc917c3cba Mon Sep 17 00:00:00 2001
From: user <user@rpios.local>
Date: Sat, 21 Feb 2026 18:50:35 +0100
Subject: [PATCH] fix: upgrade pip in container image (CVE-2026-1703)

Path traversal in malicious wheel extraction, fixed in pip 26.0.
---
 Containerfile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Containerfile b/Containerfile
index 865a53c..6e5eabd 100644
--- a/Containerfile
+++ b/Containerfile
@@ -1,6 +1,7 @@
 FROM python:3.13-alpine
 
-RUN pip install --no-cache-dir pyyaml>=6.0
+RUN pip install --no-cache-dir --upgrade pip && \
+    pip install --no-cache-dir pyyaml>=6.0
 
 WORKDIR /app