From 3d78e90ab1b7eae95571e9ec2575d55692b0d1d6 Mon Sep 17 00:00:00 2001 From: Matt Miller Date: Wed, 21 Feb 2024 14:50:08 -0500 Subject: [PATCH] Update Dockerfile operator-framework/ansible-operator to v1.34.0 (#1714) Update Dockerfile base image * Vulnerability scans against this image when deployed shows: CVE-2023-4911 * https://quay.io/repository/operator-framework/ansible-operator/manifest/sha256:f08f675976f42dc3a8ebbb8482acea153a8f57232e2ee48940e3d40ca40d24d9?tab=vulnerabilities * It appears if https://github.com/ansible/awx-operator/blob/5f3d9ed96f05b25b3c7f38df550d9f2bce0ec199/Dockerfile#L1C14-L1C49 is updated to `v1.34.0` this vulnerability is mitigated. --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 7d3869021..25ba2af61 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM quay.io/operator-framework/ansible-operator:v1.32.0 +FROM quay.io/operator-framework/ansible-operator:v1.34.0 USER root RUN dnf update --security --bugfix -y && \